Lucene search

[email protected]CVE-2020-10289

HistoryAug 20, 2020 - 8:15 a.m.

CVE-2020-10289

2020-08-2008:15:10

CWE-502

CWE-20

[email protected]

web.nvd.nist.gov

cve-2020-10289

yaml load

object instantiation

ros

python

nvd

vulnerability

6.5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.0%

JSON

Use of unsafe yaml load. Allows instantiation of arbitrary objects. The flaw itself is caused by an unsafe parsing of YAML values which happens whenever an action message is processed to be sent, and allows for the creation of Python objects. Through this flaw in the ROS core package of actionlib, an attacker with local or remote access can make the ROS Master, execute arbitrary code in Python form. Consider yaml.safe_load() instead. Located first in actionlib/tools/library.py:132. See links for more info on the bug.

Affected configurations

NVD

Node

openroboticsrobot_operating_systemMatch-

CPENameOperatorVersion
openrobotics:robot_operating_systemopenrobotics robot operating systemeq-

CPE	Name	Operator	Version
openrobotics:robot_operating_system	openrobotics robot operating system	eq	-

CNA Affected

[
  {
    "product": "ros",
    "vendor": "Open Robotics",
    "versions": [
      {
        "status": "affected",
        "version": "ROS Melodic Morenia and prior distros"
      }
    ]
  }
]