109 matches found
CVE-2024-37861
Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a buffer overflow via the nav2amcl process. This vulnerability is triggered via sending a crafted .yaml file...
Nav2 安全漏洞
Nav2 is the ROS community's navigation framework and system for ROS2. A security vulnerability exists in Nav2, which stems from an error throwing mechanism that contains a mechanism to execute arbitrary code...
CVE-2024-37861
Open Robotics ROS2 and Nav2 humble versions are affected by a buffer overflow in the nav2_amcl process triggered by a crafted YAML file. The vulnerability affects the navigation stack component nav2_amcl and can lead to a high-severity impact (C/H/I/A). There is no specific patch/version remediat...
Nav2 安全漏洞
Nav2 is the ROS community's navigation framework and system for ROS2. A security vulnerability exists in Nav2 that originates from a post-release reuse vulnerability contained in the nav2amcl process. An attacker exploiting this vulnerability could be triggered by remotely sending a request to...
CVE-2024-38920
Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a use-after-free via the nav2amcl process. This vulnerability is triggerd via remotely sending a request for change the value of dynamic-parameter/amcl maxbeams...
CVE-2024-25197
Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent function at /src/layeredcostmap.cpp...
CVE-2024-25198
Inappropriate pointer order of laserscanfilter.reset and tflistener.reset amclnode.cpp in Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions leads to a use-after-free...
CVE-2024-25199
Inappropriate pointer order of mapsub and mapfreemap amclnode.cpp in Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions leads to a use-after-free...
CVE-2024-25198
Inappropriate pointer order of laserscanfilter.reset and tflistener.reset amclnode.cpp in Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions leads to a use-after-free...
CVE-2024-25196
Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a buffer overflow via the nav2controller process. This vulnerability is triggerd via sending a crafted .yaml file...
CVE-2024-25196
Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a buffer overflow via the nav2controller process. This vulnerability is triggerd via sending a crafted .yaml file...
CVE-2024-25199
Inappropriate pointer order of mapsub and mapfreemap amclnode.cpp in Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions leads to a use-after-free...
CVE-2024-25197
Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent function at /src/layeredcostmap.cpp...
Design/Logic Flaw
Inappropriate pointer order of mapsub and mapfreemap amclnode.cpp in Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions leads to a use-after-free...
Buffer overflow
Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a buffer overflow via the nav2controller process. This vulnerability is triggerd via sending a crafted .yaml file...
CVE-2024-25197
Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent function at /src/layeredcostmap.cpp...
Nav2 Security Vulnerability
Nav2 is a navigation framework and system for ROS2. A security vulnerability exists in Nav2 that stems from an incorrect pointer order that can lead to reuse after release...
CVE-2024-25197
Open Robotics Robotic Operating Sytstem 2 ROS2 and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent function at /src/layeredcostmap.cpp...
PT-2024-20810 · Open Robotics · Ros2
Name of the Vulnerable Software and Affected Versions: Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions Description: The issue arises from an inappropriate pointer order of laser scan filter .reset and tf listener .reset in the amcl node.cpp file, leading to a use-after-free...
Nav2 Security Vulnerability
Nav2 is a navigation framework and system for ROS2. A security vulnerability exists in Nav2 that stems from an incorrect pointer order that can lead to reuse after release...