CVE-2026-22040 — MEDIUM (5.3)

Q: How severe is CVE-2026-22040?

CVE-2026-22040 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2026-22040?

Check the references section above for vendor advisories and patch information. Affected products include: Emqx Nanomq.

Vulnerability Description

NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In version 0.24.6, by generating a combined traffic pattern of high-frequency publishes and rapid reconnect/kick-out using the same ClientID and massive subscribe/unsubscribe jitter, it is possible to reliably trigger heap memory corruption in the Broker process, causing it to exit immediately with SIGABRT due to free(): invalid pointer. As of time of publication, no known patched versions are available.

CVSS Score

5.3

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Emqx	Nanomq	< 0.24.6

Related Weaknesses (CWE)

CWE-416

References

https://github.com/nanomq/nanomq/security/advisories/GHSA-v57q-w88m-424rExploitVendor Advisory

FAQ

What is CVE-2026-22040?

CVE-2026-22040 is a vulnerability with a CVSS score of 5.3 (MEDIUM). NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In version 0.24.6, by generating a combined traffic pattern of high-frequency publishes and rapid reconnect/kick-out using the sam...

How severe is CVE-2026-22040?

CVE-2026-22040 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2026-22040?

Check the references section above for vendor advisories and patch information. Affected products include: Emqx Nanomq.