CVE-2024-3935 — Double Free in Mosquitto

CWE-415 — Double Free7 documents6 sources

Severity

6.0MEDIUMNVD

OSV7.2

EPSS

0.5%

top 35.73%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Eclipse Mosquitto Eclipse Foundation Mosquitto

Timeline

PublishedOct 30

Latest updateApr 16

Description

In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker is configured to create an outgoing bridge connection, and that bridge connection has an incoming topic configured that makes use of topic remapping, then if the remote connection sends a crafted PUBLISH packet to the broker a double free will occur with a subsequent crash of the broker.

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:H/SC:N/SI:N/SA:N

Affected Packages4 packages

▶NVDeclipse/mosquitto2.0.0 — 2.0.19

▶Debianeclipse/mosquitto< 2.0.11-1+deb11u2+3

▶Ubuntueclipse/mosquitto< 2.0.11-1ubuntu1.2+5

▶CVEListV5eclipse_foundation/mosquitto2.0.0 — 2.0.18

Patches

Patch: github.com ↗

🔴Vulnerability Details

OSV

mosquitto vulnerabilities↗2025-04-16

▶

OSV

CVE-2024-3935: In Eclipse Mosquito, versions from 2↗2024-10-30

▶

GHSA

GHSA-r5mw-c5jc-r788: In Eclipse Mosquito, versions from 2↗2024-10-30

▶

CVEList

Eclipse Mosquito: Double free vulnerability↗2024-10-30

▶

📋Vendor Advisories

Ubuntu

Eclipse Mosquitto vulnerabilities↗2025-04-16

▶

Debian

CVE-2024-3935: mosquitto - In Eclipse Mosquito, versions from 2.0.0 through 2.0.18, if a Mosquitto broker i...↗2024

▶