Vulnerability Description
NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Versions prior to 0.24.11 have a remotely triggerable heap buffer overflow in the `uri_param_parse` function of NanoMQ's REST API. The vulnerability occurs due to an off-by-one error when allocating memory for query parameter keys and values, allowing an attacker to write a null byte beyond the allocated buffer. This can be triggered via a crafted HTTP request. Version 0.24.11 patches the issue.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Emqx | Nanomq | < 0.24.11 |
Related Weaknesses (CWE)
References
- https://github.com/nanomq/nanomq/commit/69a97b3b39cc218f044f1c8896f4d3d8757bb394Patch
- https://github.com/nanomq/nanomq/issues/2247Issue Tracking
- https://github.com/nanomq/nanomq/security/advisories/GHSA-6w96-9qw7-m599ExploitVendor Advisory
FAQ
What is CVE-2026-32135?
CVE-2026-32135 is a vulnerability with a CVSS score of 7.5 (HIGH). NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. Versions prior to 0.24.11 have a remotely triggerable heap buffer overflow in the `uri_param_parse` function of NanoMQ's REST API....
How severe is CVE-2026-32135?
CVE-2026-32135 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2026-32135?
Check the references section above for vendor advisories and patch information. Affected products include: Emqx Nanomq.