CVE-2024-36856

HIGH 7.5

CVSS Score

7.5

EPSS Score

0.9%

EPSS Percentile

76th

RMQTT Broker 0.4.0 is vulnerable to Denial of Service (DoS) due to improper session resource management. An attacker can exhaust system memory and crash the daemon by establishing and maintaining a vast number of long-lived malicious publish/subscribe sessions.

Vendor	n/a
Product	n/a
Published	Jun 12, 2024
Last Updated	Apr 3, 2026

Stay Ahead of the Next One

Get instant alerts for n/a n/a

Be the first to know when new high vulnerabilities affecting n/a n/a are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

n/a / n/a

n/a

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/rmqtt/rmqtt/releases/tag/0.4.0 gist.github.com: https://gist.github.com/pengwGit/d8410afeb0d5d11ab79f596a32178c2e