CVE-2024-36856

Published: Jun 12, 2024

Modified: Apr 3, 2026

PUBLISHED

Description

RMQTT Broker 0.4.0 is vulnerable to Denial of Service (DoS) due to improper session resource management. An attacker can exhaust system memory and crash the daemon by establishing and maintaining a vast number of long-lived malicious publish/subscribe sessions.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/rmqtt/rmqtt/releases/tag/0.4.0

https://gist.github.com/pengwGit/d8410afeb0d5d11ab79f596a32178c2e

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-36856

Description

Affected Products

References