Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

183 matches found

Vulnrichment
Vulnrichmentadded 2023/08/11 1:43 p.m.28 views

CVE-2023-39947 Another heap overflow in push_back_helper

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, even after the fix at commit 3492270, malformed PIDPROPERTYLIST parameters cause heap overflow at a different program counter. Th...

8.2CVSS6.9AI score0.00839EPSS
Exploits0References3
OSV
OSVadded 2023/08/11 1:43 p.m.7 views

CVE-2023-39947 Another heap overflow in push_back_helper

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, even after the fix at commit 3492270, malformed PIDPROPERTYLIST parameters cause heap overflow at a different program counter. Th...

8.2CVSS7.7AI score0.00839EPSS
Exploits0References5
Cvelist
Cvelistadded 2023/08/11 1:37 p.m.22 views

CVE-2023-39946 Heap overflow in push_back_helper due to a CDR message

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, heap can be overflowed by providing a PIDPROPERTYLIST parameter that contains a CDR string with length larger than the size of...

8.2CVSS8.3AI score0.00776EPSS
Exploits0References3
Debian CVE
Debian CVEadded 2023/08/11 1:37 p.m.22 views

CVE-2023-39946

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.1, 2.10.2, 2.9.2, and 2.6.6, heap can be overflowed by providing a PIDPROPERTYLIST parameter that contains a CDR string with length larger than the size of...

8.2CVSS7.6AI score0.00776EPSS
Exploits0
CVE
CVEadded 2023/08/11 1:21 p.m.69 views

CVE-2023-39945

CVE-2023-39945 affects eProsima Fast DDS (DDS implementation). A data submessage sent to the PDP port can trigger an unhandled BadParamException in Fast-CDR, causing Fast DDS to crash. Affected releases prior to patches include 2.11.0, 2.10.2, 2.9.2, and 2.6.5; patched versions are 2.11.0, 2.10.2...

8.2CVSS7.6AI score0.00808EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2023/08/11 1:21 p.m.22 views

CVE-2023-39945 Malformed serialized data in a data submessage leads to unhandled exception

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.0, 2.10.2, 2.9.2, and 2.6.5, a data submessage sent to PDP port raises unhandled BadParamException in fastcdr, which in turn crashes fastdds. Versions 2.11.0,...

8.2CVSS8.2AI score0.00808EPSS
Exploits0References4
OSV
OSVadded 2023/08/11 1:21 p.m.22 views

CVE-2023-39945 Malformed serialized data in a data submessage leads to unhandled exception

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.0, 2.10.2, 2.9.2, and 2.6.5, a data submessage sent to PDP port raises unhandled BadParamException in fastcdr, which in turn crashes fastdds. Versions 2.11.0,...

8.2CVSS7.5AI score0.00808EPSS
Exploits0References6
Debian CVE
Debian CVEadded 2023/08/11 1:21 p.m.21 views

CVE-2023-39945

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.11.0, 2.10.2, 2.9.2, and 2.6.5, a data submessage sent to PDP port raises unhandled BadParamException in fastcdr, which in turn crashes fastdds. Versions 2.11.0,...

8.2CVSS7.5AI score0.00808EPSS
Exploits0
CVE
CVEadded 2023/08/11 1:12 p.m.52 views

CVE-2023-39534

CVE-2023-39534 affects eProsima Fast DDS (DDS implementation). A malformed GAP submessage can trigger an assertion failure, causing a crash. This impacts Fast DDS versions prior to 2.10.0, 2.9.2, and 2.6.5. Debian/Ubuntu OS advisories and OSSN listings note patches in these versions, so upgrading...

7.5CVSS7.4AI score0.00893EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2023/08/11 1:12 p.m.25 views

CVE-2023-39534 Malformed GAP submessage triggers assertion failure

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.10.0, 2.9.2, and 2.6.5, a malformed GAP submessage can trigger assertion failure, crashing FastDDS. Version 2.10.0, 2.9.2, and 2.6.5 contain a patch for this iss...

7.5CVSS6.6AI score0.00893EPSS
Exploits0References5
CNNVD
CNNVDadded 2023/08/11 12:0 a.m.4 views

eProsima Fast DDS Security Vulnerability

eProsima Fast DDS is the C++ implementation of eProsima's OMG Object Management Group DDS Data Distribution Service standard. A security vulnerability exists in eProsima Fast DDS versions prior to v2.10.0, which stems from BadParamExceptionFast CDR throws an exception that is not caught by Fast...

7.5CVSS6.7AI score0.00893EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/08/11 12:0 a.m.2 views

PT-2023-4899 · Eprosima +2 · Eprosima Fast Dds +2

Name of the Vulnerable Software and Affected Versions: eprosima Fast DDS versions prior to 2.11.0 eprosima Fast DDS versions prior to 2.10.2 eprosima Fast DDS versions prior to 2.9.2 eprosima Fast DDS versions prior to 2.6.5 Description: The issue is related to an error in exception handling in t...

9.1CVSS7.3AI score0.04912EPSS
Exploits0References39
Positive Technologies
Positive Technologiesadded 2023/08/11 12:0 a.m.4 views

PT-2023-4901 · Eprosima +2 · Eprosima Fast Dds +2

Name of the Vulnerable Software and Affected Versions: eprosima Fast DDS versions prior to 2.10.0 eprosima Fast DDS versions prior to 2.9.2 eprosima Fast DDS versions prior to 2.6.5 Description: The issue is related to the use of the assert function or a similar operator in the eprosima Fast DDS...

9.1CVSS7.3AI score0.04912EPSS
Exploits0References39
NVD
NVDadded 2023/07/21 9:15 p.m.14 views

CVE-2023-37915

OpenDDS is an open source C++ implementation of the Object Management Group OMG Data Distribution Service DDS. OpenDDS crashes while parsing a malformed PIDPROPERTYLIST in a DATA submessage during participant discovery. Attackers can remotely crash OpenDDS processes by sending a DATA submessage...

7.5CVSS7.5AI score0.00755EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2023/07/21 8:2 p.m.13 views

CVE-2023-37915 Malformed PID_PROPERTY_LIST parameter in DATA submessage remotely crashes OpenDDS

OpenDDS is an open source C++ implementation of the Object Management Group OMG Data Distribution Service DDS. OpenDDS crashes while parsing a malformed PIDPROPERTYLIST in a DATA submessage during participant discovery. Attackers can remotely crash OpenDDS processes by sending a DATA submessage...

7.5CVSS7.5AI score0.00755EPSS
Exploits1References2
Prion
Prionadded 2023/02/03 9:15 p.m.11 views

Input validation

OpenDDS is an open source C++ implementation of the Object Management Group OMG Data Distribution Service DDS. OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1...

5CVSS7.5AI score0.00738EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichmentadded 2023/02/03 8:8 p.m.6 views

CVE-2023-23932 Specially crafted RTPS message may cause an OpenDDS application to crash

OpenDDS is an open source C++ implementation of the Object Management Group OMG Data Distribution Service DDS. OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1...

5.3CVSS6.2AI score0.00738EPSS
Exploits0References2
CVE
CVEadded 2023/02/03 8:8 p.m.44 views

CVE-2023-23932

OpenDDS (C++ implementation of OMG DDS) is affected by CVE-2023-23932. The vulnerability involves processing of RTPS network input: untrusted, badly-formed input may cause OpenDDS applications to crash. Root cause details indicate the issue affected OpenDDS prior to version 3.23.1. Public referen...

7.5CVSS6.2AI score0.00738EPSS
Exploits0References2Affected Software1
Check Point Advisories
Check Point Advisoriesadded 2022/08/07 12:0 a.m.1 views

BitTorrent Protocol

BitTorrent is a communication protocol for peer-to-peer file sharing P2P, which enables users to distribute data and electronic files over the Internet in a decentralized manner. This protection can be used to detect the BitTorrent Protocol handshake, and with the packet capture, allows to extrac...

4AI score
Exploits0
Trend Micro Simply Security
Trend Micro Simply Securityadded 2022/07/11 12:0 a.m.6 views

Data Distribution Service: Mitigating Risks Part 3

In the final chapter of our blog series, we discuss mitigating strategies and recommendations to keep DDS protected from malicious actors...

4.1AI score
Exploits0
Rows per page
Query Builder