CVE-2025-59946 – NanoMQ has a Use After Free vulnerability via sub info list

CVE ID : CVE-2025-59946

Published : Dec. 27, 2025, 1:15 a.m. | 1 hour, 7 minutes ago

Description : NanoMQ MQTT Broker (NanoMQ) is an Edge Messaging Platform. Prior to version 0.24.2, there is a classical data racing issue about sub info list which could result in heap use after free crash. This issue has been patched in version 0.24.2.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2025-68952 – 1-click Remote Code Execution (RCE) vulnerability in Eigent

CVE-2025-68948 – SiYuan: Information Disclosure and Authentication Bypass via Hardcoded Session Secret

CVE-2025-68927 – Improper Neutralization of HTML Tags in a Web Page in libredesk

CVE-2025-68474 – ESF-IDF Has Out-of-Bounds Write in ESP32 Bluetooth AVRCP Vendor Command Handling