Denial of Service in mqtt
Affected versions of mqtt will cause the node process to crash when receiving specially crafted MQTT packets, making the application vulnerable to a denial of service condition. Recommendation Update to v1.0.0 or later
Advisories for Npm/Mqtt package
2020
2017
Denial of Service
There is an issue in handling PUBLISH tickets may lead to an attacker causing a denial-of-service condition.
2016
Denial of Service
Specifically crafted MQTT packets can crash the application, making a DoS attack feasible with very little bandwidth.