CVE-2024-10525 — Heap-based Buffer Overflow in Mosquitto

CWE-122 — Heap-based Buffer Overflow CWE-787 — Out-of-bounds Write9 documents8 sources

Severity

7.2HIGHNVD

EPSS

15.0%

top 5.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Eclipse Mosquitto Eclipse Foundation Mosquitto

Timeline

PublishedOct 30

Latest updateFeb 12

Description

In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker sends a crafted SUBACK packet with no reason codes, a client using libmosquitto may make out of bounds memory access when acting in its on_subscribe callback. This affects the mosquitto_sub and mosquitto_rr clients.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages4 packages

▶NVDeclipse/mosquitto1.3.2 — 2.0.19

▶Debianeclipse/mosquitto< 2.0.11-1+deb11u2+3

▶Ubuntueclipse/mosquitto< 2.0.11-1ubuntu1.2+5

▶CVEListV5eclipse_foundation/mosquitto1.3.2 — 2.0.18

Patches

Patch: github.com ↗

🔴Vulnerability Details

OSV

mosquitto vulnerabilities↗2025-04-16

▶

OSV

CVE-2024-10525: In Eclipse Mosquitto, from version 1↗2024-10-30

▶

GHSA

GHSA-cm54-mprw-5279: In Eclipse Mosquitto, from version 1↗2024-10-30

▶

CVEList

Eclipse Mosquito: Heap Buffer Overflow in my_subscribe_callback↗2024-10-30

▶

📋Vendor Advisories

Ubuntu

Eclipse Mosquitto vulnerabilities↗2025-04-16

▶

Red Hat

mosquitto: heap buffer overflow in my_subscribe_callback↗2024-10-30

▶

Debian

CVE-2024-10525: mosquitto - In Eclipse Mosquitto, from version 1.3.2 through 2.0.18, if a malicious broker s...↗2024

▶

📄Research Papers

arXiv

From CVE Entries to Verifiable Exploits: An Automated Multi-Agent Framework for Reproducing CVEs↗2026-02-12

▶