Vulnerability Description
In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the broker a double free will occur with a subsequent crash of the broker.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Eclipse | Mosquitto | >= 2.0.0, < 2.0.19 |
Related Weaknesses (CWE)
References
- https://github.com/eclipse-mosquitto/mosquitto/commit/ae7a804dadac8f2aaedb24336dPatch
- https://gitlab.eclipse.org/security/vulnerability-reports/-/issues/197ExploitIssue TrackingVendor Advisory
- https://mosquitto.org/blog/2024/10/version-2-0-19-released/Release Notes
- https://lists.debian.org/debian-lts-announce/2025/02/msg00022.html
FAQ
What is CVE-2024-3935?
CVE-2024-3935 is a vulnerability with a CVSS score of 6.5 (MEDIUM). In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that m...
How severe is CVE-2024-3935?
CVE-2024-3935 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-3935?
Check the references section above for vendor advisories and patch information. Affected products include: Eclipse Mosquitto.