Lucene search
K

241 matches found

cve
cve
added 2026/02/03 7:32 p.m.15 views

CVE-2025-64438

Fast DDS (eProsima) before versions 3.4.1, 3.3.1, and 2.6.11 has a remotely triggerable OOM DoS via RTPS GAP submessages under RELIABLE QoS. A tiny GAP with a huge gap range causes StatefulReader::processGapMsg() to loop unboundedly, inserting millions of sequence numbers into WriterProxy::change...

7.5CVSS5.5AI score0.0054EPSS
Exploits0References4Affected Software1
cvelist
cvelist
added 2026/02/03 7:32 p.m.30 views

CVE-2025-64438 Fast-DDS: Unbounded GAP range triggers OOM DoS under RELIABLE QoS

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, a remotely triggerable Out-of-Memory OOM denial-of-service exists in Fast -DDS when processing RTPS GAP submessages under RELIABLE QoS. B...

6.3CVSS0.0054EPSS
Exploits0References4
osv
osv
added 2026/02/03 7:32 p.m.7 views

CVE-2025-64438 Fast-DDS: Unbounded GAP range triggers OOM DoS under RELIABLE QoS

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, a remotely triggerable Out-of-Memory OOM denial-of-service exists in Fast -DDS when processing RTPS GAP submessages under RELIABLE QoS. B...

6.3CVSS5.4AI score0.0054EPSS
Exploits0References7
attackerkb
attackerkb
added 2026/02/03 7:29 p.m.5 views

CVE-2025-64098

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory OOM...

6.3CVSS5.5AI score0.00434EPSS
Exploits0References5Affected Software1
vulnrichment
vulnrichment
added 2026/02/03 7:26 p.m.2 views

CVE-2025-62799 FastDDS's heap buffer overflow in RTPS DATA_FRAG enables unauthenticated DoS (potential RCE)

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, a heap buffer overflow exists in the Fast-DDS DATAFRAG receive path. An un authenticated sender can transmit a single malformed RTPS...

9.2CVSS5.9AI score0.00483EPSS
Exploits0References4
osv
osv
added 2026/02/03 7:26 p.m.9 views

CVE-2025-62799 FastDDS's heap buffer overflow in RTPS DATA_FRAG enables unauthenticated DoS (potential RCE)

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, a heap buffer overflow exists in the Fast-DDS DATAFRAG receive path. An un authenticated sender can transmit a single malformed RTPS...

9.2CVSS5.8AI score0.00483EPSS
Exploits0References7
attackerkb
attackerkb
added 2026/02/03 7:23 p.m.3 views

CVE-2025-62603

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . ParticipantGenericMessage is the DDS Security control-message container that carries not only the handshake but also on going security-control traffic after the handshake, such as...

6.3CVSS5.5AI score0.00501EPSS
Exploits0References5Affected Software1
cvelist
cvelist
added 2026/02/03 7:23 p.m.32 views

CVE-2025-62603 FastDDS has Out-of-memory while parsing GenericMessage when DDS Security is enabled

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . ParticipantGenericMessage is the DDS Security control-message container that carries not only the handshake but also on going security-control traffic after the handshake, such as...

6.3CVSS0.00501EPSS
Exploits0References4
euvd
euvd
added 2026/02/03 7:20 p.m.6 views

EUVD-2025-206657

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes a heap buffer overflow,...

6.3CVSS5.7AI score0.00489EPSS
Exploits0References4
cvelist
cvelist
added 2026/02/03 7:20 p.m.26 views

CVE-2025-62602 FastDDS has heap buffer overflow in readData via Manipulated DATA Submessage when DDS Security is enabled

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes a heap buffer overflow,...

6.3CVSS0.00489EPSS
Exploits0References4
attackerkb
attackerkb
added 2026/02/03 7:20 p.m.4 views

CVE-2025-62602

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes a heap buffer overflow,...

6.3CVSS5.7AI score0.00489EPSS
Exploits0References5Affected Software1
attackerkb
attackerkb
added 2026/02/03 7:16 p.m.6 views

CVE-2025-62601

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes a heap buffer overflow,...

6.3CVSS5.8AI score0.00527EPSS
Exploits0References5Affected Software1
vulnrichment
vulnrichment
added 2026/02/03 7:16 p.m.3 views

CVE-2025-62601 FastDDS has heap buffer overflow in readString via Manipulated DATA Submessage when DDS Security is enabled

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes a heap buffer overflow,...

6.3CVSS5.8AI score0.00527EPSS
Exploits0References4
nvd
nvd
added 2026/02/03 7:16 p.m.6 views

CVE-2025-62600

eprosima Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an...

8.6CVSS0.00412EPSS
Exploits0References1
osv
osv
added 2026/02/03 7:16 p.m.4 views

UBUNTU-CVE-2025-62600

eprosima Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an...

8.6CVSS6AI score0.00412EPSS
Exploits0References3
snyk
snyk
added 2026/02/03 6:49 p.m.4 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the readPropertySeq function when handling manipulated DATA Submessages with tampered length fields in the PIDIDENTITYTOKEN or PIDPERMISSIONTOKEN fields. An attacker can cause a remote out-of-memory...

8.6CVSS6.2AI score0.0036EPSS
Exploits0References2
nvd
nvd
added 2026/02/03 6:16 p.m.8 views

CVE-2025-62599

eprosima Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an...

8.6CVSS0.0036EPSS
Exploits0References1
osv
osv
added 2026/02/03 6:16 p.m.4 views

UBUNTU-CVE-2025-62599

eprosima Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an...

8.6CVSS6AI score0.0036EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/02/03 5:54 p.m.5 views

CVE-2025-62599

eprosima Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an...

8.6CVSS6AI score0.0036EPSS
Exploits0References6Affected Software1
euvd
euvd
added 2026/02/03 5:54 p.m.6 views

EUVD-2025-206690

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory OOM...

6.3CVSS5.5AI score0.0036EPSS
Exploits0References4
Rows per page
Query Builder