Description
An issue was discovered in MoscaJS Aedes 0.42.0. lib/write.js does not properly consider exceptions during the writing of an invalid packet to a stream.
Remediation
References
https://cwe.mitre.org/data/definitions/248.html
https://github.com/moscajs/aedes/pull/493
https://payatu.com/advisory/dos-in-aedes-mqtt-broker
Related Vulnerabilities
CVE-2023-22491 Vulnerability in npm package gatsby-transformer-remark
CVE-2023-6460 Vulnerability in npm package @google-cloud/firestore
CVE-2021-32738 Vulnerability in npm package stellar-sdk
CVE-2022-23619 Vulnerability in maven package org.xwiki.platform:xwiki-platform-web
CVE-2022-29251 Vulnerability in maven package org.xwiki.platform:xwiki-platform-flamingo-theme-ui