CVE-2021-41036

CVE-2021-41036

Vendor The Eclipse Foundation
Product Eclipse Paho MQTT C Client
Weakness CWE-787
Published November 2, 2021
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

In versions prior to 1.1 of the Eclipse Paho MQTT C Client, the client does not check rem_len size in readpacket.

Key dates

02Disclosure timeline

November 2, 2021 CVE published
August 4, 2024 Record updated