VYPR

Maven package

org.eclipse.hono/hono-core

pkg:maven/org.eclipse.hono/hono-core

Vulnerabilities (1)

  • CVE-2020-27217Nov 13, 2020
    affected < 1.4.3fixed 1.4.3

    In Eclipse Hono version 1.3.0 and 1.4.0 the AMQP protocol adapter does not verify the size of AMQP messages received from devices. In particular, a device may send messages that are bigger than the max-message-size that the protocol adapter has indicated during link establishment