Lucene search
IcscertCVELIST:CVE-2021-38435HistoryMay 05, 2022 - 3:27 p.m.
CVE-2021-38435 RTI Connext DDS Professional and Connext DDS Secure Incorrect Calculation of Buffer Size
2022-05-0515:27:58
CWE-131
icscert
www.cve.org
4
cve-2021-38435
rti connext
buffer overflow
CVSS3
6.6
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
AI Score
9.6
Confidence
High
EPSS
0.002
Percentile
59.5%
RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6.1.0 not correctly calculate the size when allocating the buffer, which may result in a buffer overflow.
CNA Affected
[
{
"product": "Connext DDS Professional",
"vendor": "RTI",
"versions": [
{
"lessThanOrEqual": "6.1.0",
"status": "affected",
"version": "4.2x",
"versionType": "custom"
}
]
},
{
"product": "Connext DDS Secure",
"vendor": "RTI",
"versions": [
{
"lessThanOrEqual": "6.1.0",
"status": "affected",
"version": "4.2x",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2021-38435
2022-05-05 17:15:09
prion
prion
Buffer overflow
2022-05-05 17:15:00
cve
cve
CVE-2021-38435
2022-05-05 17:15:09
ics
ics
Multiple Data Distribution Service (DDS) Implementations (Update A)
2022-02-01 12:00:00
CVSS3
6.6
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
AI Score
9.6
Confidence
High
EPSS
0.002
Percentile
59.5%
Related for CVELIST:CVE-2021-38435