CNNVD-202507-1896 Information

CNNVD ID

CNNVD-202507-1896

Related CVE

CVE-2024-42649

• CNNVD Published: 2025-07-14

Description (Chinese)

NanoMQ是美国EMQ开源的一款用于物联网边缘平台的轻量级快速 MQTT Broker。 NanoMQ v0.22.10版本存在安全漏洞，该漏洞源于内存泄漏，可能导致拒绝服务攻击。

Description (English)

NanoMQ is a lightweight fast MQTT Broker for the EEMQ open source in the United States of America. The NanoMQ v0.22.10 version contains a security loophole, which originates from a leak in the memory and may lead to a denial of service attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

EMQX

Published

2025-07-14

Last Modified

2026-02-24

References

https://github.com/nanomq/nanomq https://github.com/songxpu/bug_report/blob/master/MQTT/NanoMQ/CVE-2024-42649.md https://access.redhat.com/security/cve/cve-2024-42649

Patch

https://github.com/nanomq/nanomq/releases