CNNVD-202602-594 Information

CNNVD ID

CNNVD-202602-594

Related CVE

CVE-2025-68699

• CNNVD Published: 2026-02-04

Description (Chinese)

NanoMQ是美国EMQ开源的一款用于物联网边缘平台的轻量级快速 MQTT Broker。 NanoMQ 0.24.6版本存在代码问题漏洞，该漏洞源于处理共享订阅时协议解析或转发不一致，可能导致远程触发崩溃。

Description (English)

NanoMQ is a lightweight fast MQTT Broker for the EEMQ open source in the United States of America. NanoMQ version 0.24.6 has a code problem loophole, which arises from inconsistencies in the resolution or forwarding of protocols when dealing with shared subscriptions, which may result in a remote trigger crash.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

EMQ

Published

2026-02-04

Last Modified

2026-02-24

References

https://github.com/nanomq/nanomq/commit/89d68d678e7f841ae7baa45cba8d9bc7ddc9ef4b https://github.com/nanomq/nanomq/security/advisories/GHSA-qv5f-c6v2-2f8h