Description
An issue was discovered in MoscaJS Aedes 0.42.0. lib/write.js does not properly consider exceptions during the writing of an invalid packet to a stream.
Remediation
References
https://cwe.mitre.org/data/definitions/248.html
https://github.com/moscajs/aedes/pull/493
https://payatu.com/advisory/dos-in-aedes-mqtt-broker
Related Vulnerabilities
CVE-2021-44228 Vulnerability in maven package org.apache.logging.log4j:log4j-core
CVE-2023-34462 Vulnerability in maven package io.netty:netty-handler
CVE-2021-25933 Vulnerability in maven package org.opennms:opennms-webapp
CVE-2021-33609 Vulnerability in maven package com.vaadin:vaadin-server
CVE-2023-47324 Vulnerability in maven package org.silverpeas.core:silverpeas-core-api