Browse all 11 CVE security advisories affecting nanomq. AI-powered Chinese analysis, POCs, and references for each vulnerability.
NanoMQ is an ultra-lightweight MQTT broker designed for IoT and edge computing environments, handling high-volume message routing with minimal resource consumption. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from improper input validation and authentication flaws. While no major public security incidents have been widely documented, the 11 recorded CVEs highlight ongoing concerns around buffer overflows and insecure default configurations. Its lightweight architecture introduces unique attack surfaces, particularly in constrained environments where security updates may be delayed. Organizations should implement strict network segmentation and regular patching to mitigate risks associated with its historically vulnerable components.
CVE-2025-321352026-04-21CVE-2025-599472026-04-02CVE-2025-256272026-04-02CVE-2025-320462026-04-02Showing up to 20 recent security advisories. View all →
This page lists every published CVE security advisory associated with nanomq. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.