Denial of Service (DoS)
Affecting mqtt package, versions >=2.0.0 <2.15.0
Affected versions of this package are vulnerable to Denial of Service (DoS) attacks. MQTT.js 2.x.x prior to 2.15.0 issue in handling PUBLISH tickets may lead to an attacker causing a denial-of-service condition.
Do your applications use this vulnerable package?
- Masataka Sakaguchi, Bintatsu Noda, Hisashi Kojima
- Snyk ID
- 25 Dec, 2017
- 03 Jan, 2018