CVE-2024-31036

Sažetak

A heap-buffer-overflow vulnerability in the read_byte function in NanoMQ v.0.21.7 allows attackers to cause a denial of service via transmission of crafted hexstreams.

Reference

https://github.com/nanomq/nanomq/issues/1722
https://github.com/nanomq/nanomq/issues/1722

CVSS

Base:	6.8
Impact:	4.7
Exploitability:	2.1

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
LOW	LOW	HIGH

CVSS vektor

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:H

Zadnje važnije ažuriranje

10-06-2025 - 01:30

Objavljeno

22-04-2024 - 22:15