VYPR
Medium severity4.5NVD Advisory· Published May 29, 2026· Updated May 29, 2026

CVE-2026-44640

CVE-2026-44640

Description

NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Prior to 0.24.14, aio->prov_data is stored as nni_quic_conn* during dialing, but read as ex_quic_conn* during dialer close. This type confusion causes invalid object interpretation and leads to close-path hang/crash behavior. This vulnerability is fixed in 0.24.14.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Emqx/Nanomqreferences2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <0.24.14

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.