6 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-39780
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A YAML deserialization vulnerability was found in the Robot Operating System ROS 'dynparam', a command- line tool for getting, setting, and deleting parameters ...
CVE-2024-39780
creationtimestamp| type| source ---|---|--- 2025-04-02 09:01:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3llsznc7g3v2o 2025-04-02 09:48:16+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114267737002428971 2025-04-02 09:48:16+00:00| seen|...
CVE-2024-39780
A YAML deserialization vulnerability was found in the Robot Operating System ROS 'dynparam', a command-line tool for getting, setting, and deleting parameters of a dynamically configurable node, affecting ROS distributions Noetic and earlier. The issue is caused by the use of the yaml.load functi...
CVE-2024-39780 Use of unsafe yaml load in dynparam
A YAML deserialization vulnerability was found in the Robot Operating System ROS 'dynparam', a command-line tool for getting, setting, and deleting parameters of a dynamically configurable node, affecting ROS distributions Noetic and earlier. The issue is caused by the use of the yaml.load functi...
CVE-2024-39780
Summary (CVE-2024-39780) : A YAML deserialization vulnerability affects the Robot Operating System (ROS) dynparam tool used to manage parameters for ROS nodes, impacting Noetic and earlier. The root cause is the use of yaml.load() in the set and get verbs, which can instantiate arbitrary Python o...
CVE-2024-39780 Use of unsafe yaml load in dynparam
A YAML deserialization vulnerability was found in the Robot Operating System ROS 'dynparam', a command-line tool for getting, setting, and deleting parameters of a dynamically configurable node, affecting ROS distributions Noetic and earlier. The issue is caused by the use of the yaml.load functi...