CVE-2026-25627

Name of the Vulnerable Software and Affected Versions NanoMQ versions prior to 0.24.8

Description NanoMQ MQTT Broker is an Edge Messaging Platform. Before version 0.24.8, the MQTT-over-WebSocket transport in NanoMQ could be crashed by sending an MQTT packet with a deliberately large Remaining Length in the fixed header while providing a much shorter actual payload. The code copies bytes of the Remaining Length without verifying that the current receive buffer contains that many bytes, resulting in an out-of-bounds read. This can be triggered remotely through the WebSocket listener.

Recommendations Update NanoMQ to version 0.24.8 or later.