{"id":"CVE-2021-45933","details":"wolfSSL wolfMQTT 1.9 has a heap-based buffer overflow (8 bytes) in MqttDecode_Publish (called from MqttClient_DecodePacket and MqttClient_HandlePacket).","modified":"2026-03-14T11:18:19.367190Z","published":"2022-01-01T01:15:08.577Z","references":[{"type":"REPORT","url":"https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=38237"},{"type":"FIX","url":"https://github.com/wolfSSL/wolfMQTT/commit/84d4b53122e0fa0280c7872350b89d5777dabbb2"},{"type":"EVIDENCE","url":"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/wolfmqtt/OSV-2021-1211.yaml"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/wolfssl/wolfmqtt","events":[{"introduced":"0"},{"last_affected":"74c09f7eb7934112cba2fe5a0b4956f2a01016af"},{"fixed":"84d4b53122e0fa0280c7872350b89d5777dabbb2"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"1.9"}]}}],"versions":["v0.10","v0.11","v0.12","v0.13","v0.14","v0.2","v0.2-dist","v0.3","v0.4","v0.5","v0.6","v0.8","v0.9","v1.0","v1.1.0","v1.2","v1.3.0","v1.4","v1.6","v1.7","v1.8","v1.9"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-45933.json","vanir_signatures":[{"digest":{"threshold":0.9,"line_hashes":["280277640168772996348933106240497287098","120079499844175725862248008020683433689","47346730709629407828913387344300580063","79204163782737757014109719066411078623","120803118586187991233588399328252326413"]},"source":"https://github.com/wolfssl/wolfmqtt/commit/84d4b53122e0fa0280c7872350b89d5777dabbb2","signature_version":"v1","deprecated":false,"signature_type":"Line","id":"CVE-2021-45933-3c4f0149","target":{"file":"src/mqtt_client.c"}},{"digest":{"function_hash":"329802369575170683440296892229791015484","length":3755},"source":"https://github.com/wolfssl/wolfmqtt/commit/84d4b53122e0fa0280c7872350b89d5777dabbb2","signature_version":"v1","deprecated":false,"signature_type":"Function","id":"CVE-2021-45933-7e8fea99","target":{"file":"src/mqtt_client.c","function":"MqttClient_WaitType"}}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}]}