Realsung

**Name of the Vulnerable Software and Affected Versions** NanoMQ version 0.15.0-0 **Description** A heap overflow occurs in the `read byte` function of `mqtt code.c`. This issue may be exploited, but details about real-world incidents or the estimated number of potentially affected devices are not provided. **Recommendations** For NanoMQ version 0.15.0-0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NanoMQ version 0.15.0-0 **Description** A Heap overflow occurs in the `copyn utf8 str` function of `mqtt parser.c`. **Recommendations** For NanoMQ version 0.15.0-0, consider disabling the `copyn utf8 str` function as a temporary workaround until a patch is available.

**Name of the Vulnerable Software and Affected Versions** NanoMQ version 0.15.0-0 **Description** A segment fault with Null Pointer Dereference occurs in the process of decoding `subinfo decode` and `unsubinfo decode`. This issue is related to the decoding process, which can lead to a crash. **Recommendations** For NanoMQ version 0.15.0-0, consider disabling the `subinfo decode` and `unsubinfo decode` functions until a patch is available to prevent potential crashes due to Null Pointer Dereference. At the moment, there is no information about a newer version that contains a fix for this vulnerability.