CVE-2020-13821

An issue was discovered in HiveMQ Broker Control Center 4.3.2. A crafted clientid parameter in an MQTT packet (sent to the Broker) is reflected in the client section of the management console. The attacker's JavaScript is loaded in a browser, which can lead to theft of the session and cookie of the administrator's account of the Broker.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.4 MEDIUM
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 56%
VendorProductVersion
hivemqbroker_control_center
4.3.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://payatu.com/advisory/hivemq-mqtt-broker---xss-over-mqtt
https://www.hivemq.com/blog/hivemq-4-3-3-released/
https://payatu.com/advisory/hivemq-mqtt-broker---xss-over-mqtt
https://www.hivemq.com/blog/hivemq-4-3-3-released/