Description
An issue was discovered in MoscaJS Aedes 0.42.0. lib/write.js does not properly consider exceptions during the writing of an invalid packet to a stream.
Remediation
References
https://cwe.mitre.org/data/definitions/248.html
https://github.com/moscajs/aedes/pull/493
https://payatu.com/advisory/dos-in-aedes-mqtt-broker
Related Vulnerabilities
CVE-2014-0086 Vulnerability in maven package org.richfaces.core:richfaces-core-impl
CVE-2018-25050 Vulnerability in npm package chosen-js
CVE-2022-39386 Vulnerability in npm package @fastify/websocket
CVE-2021-46384 Vulnerability in maven package net.mingsoft:ms-mcms
CVE-2022-24728 Vulnerability in maven package org.webjars.bowergithub.ckeditor:ckeditor4