CVE-2025-59947
Published
CVSS v3
9
CRITICAL
CVSS v2
N/A
Affected
1
PROJECT
Description
NanoMQ is a messaging broker/bus for IoT Edge & SDV. Versions prior to 0.24.4 have a buffer overflow case while the PUBLISH packets trigger both shared subscription and vanila subscription. This is fixed in version 0.24.4. As a workaround, disable shared subscription.
An ultra-lightweight and blazing-fast MQTT Messaging Broker/Bus for IoT Edge & SDV
GitHub