Through sharp, technical and insightful analysis, the Payatu Team is constantly on the lookout for vulnerabilities and threats. This section exhibits a few of our findings.
Through sharp, technical and insightful analysis, the Payatu Team is constantly on the lookout for vulnerabilities and threats. This section exhibits a few of our findings.
Stored XSS on the HiveMQ Broker management console
An issue was discovered on HiveMQ MQTT Broker, The client id of any connected device is not sanitized for XSS in the admin console leading to stored XSS.
CVE-2020-13821
HiveMQ
MQTT Broker 4.3.2
18 May 2020 reported to the vendor
25 August 2020 Bug fixed and responsible disclosure after 90 days. .
Arun Magesh
Research Powered Cybersecurity Services and Training. Eliminate security threats through our innovative and extensive security assessments.
Fill in your details and get your copy of the datasheet in few seconds
Fill in your details and get your copy of the ebook in few seconds
Fill in your details and get your copy of sample report in few seconds
Fill in your details and get your copy of sample report in few seconds
Fill in your details and get your copy of sample report in few seconds
Fill in your details and get your copy of sample report in few seconds
Fill in your details and get your copy of sample report in few seconds
Fill in your details and get your copy of sample report in few seconds
Fill in your details and get your copy of sample report in few seconds
Fill in your details and get your copy of sample report in few seconds
Fill in your details and get your copy of sample report in few seconds
Fill in your details and get your copy of sample report in few seconds
Let’s make cyberspace secure together!
Requirements
What our clients are saying!
Trusted by
