VYPR

MQTT server

by Xwiki Contrib

CVEs (1)

  • CVE-2018-19417CriNov 21, 2018
    risk 0.65cvss 10.0epss 0.06

    An issue was discovered in the MQTT server in Contiki-NG before 4.2. The function parse_publish_vhdr() that parses MQTT PUBLISH messages with a variable length header uses memcpy to input data into a fixed size buffer. The allocated buffer can fit only MQTT_MAX_TOPIC_LENGTH…