In Eclipse Mosquitto version 1.0 to 1.5.5 (inclusive) when a client publishes a retained message to a topic, then has its access to that topic revoked, the retained message will still be published to clients that subscribe to that topic in the future. In some applications this may result in clients being able cause effects that would otherwise not be allowed.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://bugs.eclipse.org/bugs/show_bug.cgi?id=543127 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: eclipse
Published: 2019-03-27T17:26:20
Updated: 2024-08-05T08:38:06.266Z
Reserved: 2018-06-18T00:00:00
Link: CVE-2018-12546
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-03-27T18:29:00.240
Modified: 2024-11-21T03:45:24.823
Link: CVE-2018-12546
Redhat
No data.