CVE-2018-8531

Summary

A remote code execution vulnerability exists in the way that Azure IoT Hub Device Client SDK using MQTT protocol accesses objects in memory, aka "Azure IoT Device Client SDK Memory Corruption Vulnerability." This affects Hub Device Client SDK, Azure IoT Edge.

Affected Software

VendorProductVersion RangeStatus
MicrosoftHub Device Client SDKAzure IoTaffected
MicrosoftAzure IoT EdgeAzure IoT Edgeaffected

Weaknesses

  • Information Disclosure
  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References