Description
An issue was discovered in MoscaJS Aedes 0.42.0. lib/write.js does not properly consider exceptions during the writing of an invalid packet to a stream.
Remediation
References
https://cwe.mitre.org/data/definitions/248.html
https://github.com/moscajs/aedes/pull/493
https://payatu.com/advisory/dos-in-aedes-mqtt-broker
Related Vulnerabilities
CVE-2021-40369 Vulnerability in maven package org.apache.jspwiki:jspwiki-main
CVE-2020-8441 Vulnerability in maven package org.jyaml:jyaml
CVE-2022-22965 Vulnerability in maven package org.springframework.boot:spring-boot-starter-web
CVE-2022-25860 Vulnerability in maven package org.webjars.npm:simple-git