cbcvebase.
CVE-2018-12551
published 2019-03-27

CVE-2018-12551: When Eclipse Mosquitto version 1.0 to 1.5.5 (inclusive) is configured to use a password file for authentication, any malformed data in the password file will…

PriorityP348high8.1CVSS 3.0
AVNACHPRNUINSUCHIHAH
EPSS
1.47%
70.6th percentile
When Eclipse Mosquitto version 1.0 to 1.5.5 (inclusive) is configured to use a password file for authentication, any malformed data in the password file will be treated as valid. This typically means that the malformed data becomes a username and no password. If this occurs, clients can circumvent authentication and get access to the broker by using the malformed username. In particular, a blank line will be treated as a valid empty username. Other security measures are unaffected. Users who have only used the mosquitto_passwd utility to create and modify their password files are unaffected by this vulnerability.

Affected

8 ranges
VendorProductVersion rangeFixed in
debianmosquitto< mosquitto 1.5.6-1 (bookworm)mosquitto 1.5.6-1 (bookworm)
eclipsemosquitto>= 0 < 1.5.6-11.5.6-1
eclipsemosquitto>= 0 < 1.5.6-11.5.6-1
eclipsemosquitto>= 0 < 1.5.6-11.5.6-1
eclipsemosquitto>= 0 < 1.5.6-11.5.6-1
eclipsemosquitto1.0 – 1.5.5
the_eclipse_foundationeclipse_mosquitto>= 1.0 < unspecifiedunspecified
the_eclipse_foundationeclipse_mosquittounspecified – 1.5.5

CVSS provenance

nvdv3.08.1HIGHCVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.1HIGH
vendor_debian8.1HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.