https://nvd.nist.gov/vuln/detail/CVE-2024-45038
This is also patched on the public MQTT server, private MQTT brokers remain vulnerable.