Ian Craggs

**Name of the Vulnerable Software and Affected Versions** Eclipse Mosquitto versions prior to 1.4.15 **Description** The issue allows a malicious client to cause a denial of service for other clients by sending a topic string that is not valid UTF-8, causing them to disconnect from the broker. **Recommendations** For Eclipse Mosquitto versions prior to 1.4.15, update to version 1.4.15 or later to resolve the issue. As a temporary workaround, consider restricting access to the broker to minimize the risk of exploitation.