mosquitto is vulnerable to denial of service (DoS) attacks. The vulnerability exists due to the lack of checks on invalid UTF-8 characters in the topic strings, causing a broker to disconnect when parsing invalid strings.
CPE | Name | Operator | Version |
---|---|---|---|
mosquitto | eq | 1.4.8 | |
mosquitto:xenial | eq | 1.4.8 |