Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2026-25627
PUBLISHED
More InfoOfficial Page
Assigner-GitHub_M
Assigner Org ID-a0819718-46f1-4df5-94e2-005712e83aaa
View Known Exploited Vulnerability (KEV) details
Published At-30 Mar, 2026 | 20:11
Updated At-31 Mar, 2026 | 19:09
Rejected At-
▼CVE Numbering Authority (CNA)
nanomq: OOB Read / Crash (DoS) via Malformed MQTT Remaining Length over WebSocket

NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Prior to version 0.24.8, NanoMQ’s MQTT-over-WebSocket transport can be crashed by sending an MQTT packet with a deliberately large Remaining Length in the fixed header while providing a much shorter actual payload. The code path copies Remaining Length bytes without verifying that the current receive buffer contains that many bytes, resulting in an out-of-bounds read (ASAN reports OOB / crash). This is remotely triggerable over the WebSocket listener. This issue has been patched in version 0.24.8.

Affected Products
Vendor
nanomq
Product
nanomq
Versions
Affected
  • < 0.24.8
Problem Types
TypeCWE IDDescription
CWECWE-125CWE-125: Out-of-bounds Read
Type: CWE
CWE ID: CWE-125
Description: CWE-125: Out-of-bounds Read
Metrics
VersionBase scoreBase severityVector
3.16.5MEDIUM
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Version: 3.1
Base score: 6.5
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://github.com/nanomq/nanomq/security/advisories/GHSA-w4rh-v3h2-j29x
x_refsource_CONFIRM
https://github.com/nanomq/NanoNNG/pull/1405
x_refsource_MISC
https://github.com/nanomq/NanoNNG/commit/e80b30bad6d855593a68d18f2785bfaca6faf09e
x_refsource_MISC
https://github.com/nanomq/nanomq/releases/tag/0.24.8
x_refsource_MISC
Hyperlink: https://github.com/nanomq/nanomq/security/advisories/GHSA-w4rh-v3h2-j29x
Resource:
x_refsource_CONFIRM
Hyperlink: https://github.com/nanomq/NanoNNG/pull/1405
Resource:
x_refsource_MISC
Hyperlink: https://github.com/nanomq/NanoNNG/commit/e80b30bad6d855593a68d18f2785bfaca6faf09e
Resource:
x_refsource_MISC
Hyperlink: https://github.com/nanomq/nanomq/releases/tag/0.24.8
Resource:
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CISA ADP Vulnrichment
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://github.com/nanomq/nanomq/security/advisories/GHSA-w4rh-v3h2-j29x
exploit
Hyperlink: https://github.com/nanomq/nanomq/security/advisories/GHSA-w4rh-v3h2-j29x
Resource:
exploit
Details not found