CVE-2021-41036

CVE-2021-41036

EPSS 1.2%CWE-787

In versions prior to 1.1 of the Eclipse Paho MQTT C Client, the client does not check rem_len size in readpacket.

Affected products

The Eclipse Foundation · Eclipse Paho MQTT C Client

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/eclipse/paho.mqtt.embedded-c/issues/96