CVE-2024-42651 | THREATINT

Description

NanoMQ v0.17.9 was discovered to contain a heap use-after-free vulnerability via the component sub_Ctx_handle. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted SUBSCRIBE message.

PUBLISHED Reserved 2024-08-05 | Published 2025-07-29 | Updated 2025-07-29 | Assigner mitre

References

github.com/nanomq/nanomq

github.com/nanomq/nanomq/issues/1217

github.com/...port/blob/master/MQTT/NanoMQ/CVE-2024-42651.md

cve.org (CVE-2024-42651)

nvd.nist.gov (CVE-2024-42651)

Download JSON