Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The Eclipse Mosquitto broker up to version 1.4.15 does not reject strings that are not valid UTF-8. A malicious client could cause other clients that do reject invalid UTF-8 strings to disconnect themselves from the broker by sending a topic string which is not valid UTF-8, and so cause a denial of service for the clients.
CVSS Information
N/A
Vulnerability Type
输入验证不恰当
Vulnerability Title
Eclipse Mosquitto broker 安全漏洞
Vulnerability Description
Eclipse Mosquitto是Eclipse基金会的一款开源的消息代理软件。 Eclipse Mosquitto broker 1.4.15及之前版本中存在安全漏洞,该漏洞源于程序接收了并非为有效UTF-8的字符串。攻击者可利用该漏洞造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A