CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

109 matches found

RedhatCVE•added 2026/02/14 1:26 a.m.•3 views

CVE-2026-26011

navigation2 is a ROS 2 Navigation Framework and System. In 1.3.11 and earlier, a critical heap out-of-bounds write vulnerability exists in Nav2 AMCL's particle filter clustering logic. By publishing a single crafted geometrymsgs/PoseWithCovarianceStamped message with extreme covariance values to...

9.8CVSS5.7AI score0.00183EPSS

Exploits1References1

NVD•added 2026/02/12 9:16 p.m.•5 views

CVE-2026-26011

9.8CVSS0.00183EPSS

Exploits1References3

Vulnrichment•added 2026/02/12 8:42 p.m.•4 views

CVE-2026-26011 Critical Heap Out-of-bounds Access in `pf_cluster_stats()` via Malicious /initialpose Covariance -- Potential Remote Code Execution

9.3CVSS5.7AI score0.00183EPSS

Exploits1References3

CNNVD•added 2026/02/12 12:0 a.m.•2 views

Nav2 缓冲区错误漏洞

Nav2 is a navigation framework and system for ROS communities that works with ROS2. Versions of Nav2 such as 1.3.11 and earlier contained a buffer error vulnerability. This vulnerability stemmed from a stack overflow write vulnerability in the particle filter clustering logic of Nav2 AMCL, which...

9.8CVSS6.1AI score0.00183EPSS

Exploits1References3

RedhatCVE•added 2025/05/23 9:49 a.m.•2 views

CVE-2024-25198

Inappropriate pointer order of laserscanfilter.reset and tflistener.reset amclnode.cpp in Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions leads to a use-after-free...

9.1CVSS6.8AI score0.00074EPSS

Exploits2References1

RedhatCVE•added 2025/05/23 9:45 a.m.•5 views

CVE-2024-25199

Inappropriate pointer order of mapsub and mapfreemap amclnode.cpp in Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions leads to a use-after-free...

8.1CVSS6.8AI score0.00071EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:44 a.m.•4 views

CVE-2024-25197

Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent function at /src/layeredcostmap.cpp...

6.5CVSS7.3AI score0.00218EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:5 a.m.•4 views

CVE-2024-38927

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a use-after-free via the nav2amcl process. This vulnerability is triggered via remotely sending a request to change the value of dynamic-parameter /amcl dobeamskip...

9.8CVSS5.9AI score0.00137EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:4 a.m.•3 views

CVE-2024-38923

9.8CVSS5.9AI score0.00183EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 8:49 a.m.•1 views

CVE-2024-41650

Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2costmap2d...

9.8CVSS6.2AI score0.00132EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 7:43 a.m.•3 views

CVE-2024-37861

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a buffer overflow via the nav2amcl process. This vulnerability is triggered via sending a crafted .yaml file...

9.8CVSS7.9AI score0.0031EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 7:23 a.m.•4 views

CVE-2024-25196

Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a buffer overflow via the nav2controller process. This vulnerability is triggerd via sending a crafted .yaml file...

3.3CVSS7.8AI score0.00058EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 6:49 a.m.•4 views

CVE-2024-38921

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a use-after-free via the nav2amcl process. This vulnerability is triggered via remotely sending a request for change the value of dynamic-parameter/amcl zrand...

9.8CVSS7.5AI score0.00187EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 6:49 a.m.•6 views

CVE-2024-38922

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble version was discovered to contain a heap overflow in the nav2amcl process. This vulnerability is triggered via sending a crafted message to the component /initialpose...

9.8CVSS7.6AI score0.0023EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 6:48 a.m.•2 views

CVE-2024-37863

9.8CVSS7.9AI score0.0031EPSS

Exploits0References1

OSV•added 2024/12/06 10:15 p.m.•3 views

CVE-2024-41650

Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2costmap2d...

9.8CVSS6.2AI score

Exploits0References3

OSV•added 2024/12/06 10:15 p.m.•2 views

CVE-2024-38925

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a use-after-free via the nav2amcl process. This vulnerability is triggered via remotely sending a request for change the value of dynamic-parameter/amcl zmax...

9.8CVSS5.8AI score0.00137EPSS

Exploits1References3

OSV•added 2024/12/06 10:15 p.m.•2 views

CVE-2024-41645

Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2amcl...

9.8CVSS6.1AI score

Exploits0References3

OSV•added 2024/12/06 10:15 p.m.•1 views

CVE-2024-38926

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a use-after-free via the nav2amcl process. This vulnerability is triggered via remotely sending a request for change the value of dynamic-parameter /amcl zshort...

9.8CVSS5.8AI score

Exploits0References3

NVD•added 2024/12/06 10:15 p.m.•16 views

CVE-2024-38927

9.8CVSS0.00137EPSS

Exploits1References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by