mqtt 0.5.0
1 security vulnerability
found in version
0.5.0
MQTT does not validate hostnames
high severity CVE-2025-12790
high severity
CVE-2025-12790
Patched versions:
>= 0.7.0
A flaw was found in Rubygem MQTT. By default, the package used to not have hostname validation, resulting in possible Man-in-the-Middle (MITM) attack.
No officially reported memory leakage issues detected.
This gem version does not have any officially reported memory leaked issues.
No license issues detected.
This gem version has a license in the gemspec.
This gem version is available.
This gem version has not been yanked and is still available for usage.