CVE-2018-3778

Published August 8th, 2018

View on NVD ↗

CVSS v3

5.3

MEDIUM

CVSS v2

5

MEDIUM

Affected

2

PROJECTS

Description

Improper authorization in aedes version <0.35.0 will publish a LWT in a channel when a client is not authorized.

Barebone MQTT broker that can run on any stream server, the node way

GitHub

1.95K

nodejs/security-wg

Node.js Ecosystem Security Working Group

GitHub

539