Lucene search
K

153 matches found

CVE
CVE
added 2024/12/06 12:0 a.m.57 views

CVE-2024-41649

CVE-2024-41649 affects the ROS 2 navigation2 component (v.humble) of Open Robotics ROS 2. The issue is an Insecure Permissions vulnerability that allows an attacker to execute arbitrary code via a crafted script to the executor_thread_. Root cause stated as insecure permissions. Impact is indicat...

9.8CVSS7.4AI score0.00677EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/06 12:0 a.m.14 views

CVE-2024-41647

Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2mppicontroller...

7.9AI score0.00677EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/12/06 12:0 a.m.6 views

CVE-2024-41644

Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via the dynparamhandler component...

7.8AI score0.00677EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/12/06 12:0 a.m.10 views

CVE-2024-38926

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a use-after-free via the nav2amcl process. This vulnerability is triggered via remotely sending a request for change the value of dynamic-parameter /amcl zshort...

7.5AI score0.00571EPSS
Exploits1References3
CVE
CVE
added 2024/12/06 12:0 a.m.67 views

CVE-2024-44852

CVE-2024-44852 affects Open Robotics ROS2 navigation2 ( Humble ). The vulnerability is a segmentation violation in theta_star::ThetaStar::isUnsafeToPlan(), as described in multiple sources (NVD/Red Hat/CNNVD/CVELIST). CVSS vectors indicate network attack, low complexity with no privileges or user...

9.8CVSS7.4AI score0.00587EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/12/06 12:0 a.m.16 views

CVE-2024-41644

Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via the dynparamhandler component...

0.00677EPSS
Exploits1References3
CVE
CVE
added 2024/12/06 12:0 a.m.51 views

CVE-2024-41645

CVE-2024-41645 affects Open Robotics ROS 2 navigation2 (v.humble) — insecure permissions in the nav2__amcl component permit executing arbitrary code via a crafted script. The issue is described across multiple sources (including Red Hat and NVD listings) as a high-severity, network-based vulnerab...

9.8CVSS7.4AI score0.00677EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2024/12/06 12:0 a.m.56 views

CVE-2024-41646

The CVE-2024-41646 entry concerns the Open Robotics ROS2 Navigation2 (v.humble) insecure permissions issue in the nav2_dwb_controller. The root cause is insecure permissions that may allow an attacker to execute arbitrary code, with a network attack vector and no user interaction required. Impact...

9.8CVSS7.7AI score0.00677EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2024/12/06 12:0 a.m.53 views

CVE-2024-38923

Open Robotics ROS2 Humble and Nav2 Humble contain a use-after-free in the nav2_amcl process. The issue is triggered by a remote request to modify the dynamic parameter /amcl_odom_frame_id, enabling an attacker over the network to potentially compromise the affected system. CVSS indicates CRITICAL...

9.8CVSS7.6AI score0.00545EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2024/12/06 12:0 a.m.68 views

CVE-2024-38927

ROS2 (Humble) and Nav2 humble include a use-after-free in the nav2_amcl process, exploitable by remotely changing the dynamic parameter /amcl do_beamskip. This vulnerability affects the nav2_amcl path and is rated critical. PT-/security advisories suggest interim mitigations: disable the nav2_amc...

9.8CVSS7.5AI score0.00571EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/12/06 12:0 a.m.23 views

CVE-2024-38923

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a use-after-free via the nav2amcl process. This vulnerability is triggered via remotely sending a request to change the value of dynamic-parameter/amcl odomframeid...

0.00545EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/12/06 12:0 a.m.13 views

CVE-2024-41645

Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2amcl...

0.00677EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/12/06 12:0 a.m.24 views

CVE-2024-44854

Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a NULL pointer dereference via the component smoothPlan...

0.00566EPSS
Exploits1References3
CVE
CVE
added 2024/12/06 12:0 a.m.56 views

CVE-2024-38924

Open Robotics ROS 2 (ROS2) and Nav2 Humble contain a use-after-free in the nav2_amcl process. The vulnerability is triggered by remotely changing the dynamic parameter /amcl_laser_model_type, enabling memory corruption through a crafted request. Affected components include the nav2_amcl workflow ...

9.8CVSS7.6AI score0.00545EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/12/06 12:0 a.m.18 views

CVE-2024-38924

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a use-after-free via the nav2amcl process. This vulnerability is triggered via remotely sending a request to change the value of dynamic-parameter/amcl lasermodeltype...

0.00545EPSS
Exploits1References3
NVD
NVD
added 2024/12/05 11:15 p.m.19 views

CVE-2024-38910

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble version was discovered to contain a use-after-free in the nav2amcl process. This vulnerability is triggered via sending a request to change dynamic parameters...

7.5CVSS0.00508EPSS
Exploits0References3
NVD
NVD
added 2024/12/05 11:15 p.m.12 views

CVE-2024-38920

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a use-after-free via the nav2amcl process. This vulnerability is triggerd via remotely sending a request for change the value of dynamic-parameter/amcl maxbeams...

9.1CVSS0.00508EPSS
Exploits0References3
NVD
NVD
added 2024/12/05 11:15 p.m.15 views

CVE-2024-30963

Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2- ROS2-humble and navigation 2-humble allows a local attacker to execute arbitrary code via a crafted script...

7.8CVSS0.0023EPSS
Exploits0References2
NVD
NVD
added 2024/12/05 11:15 p.m.21 views

CVE-2024-37863

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a buffer overflow via the nav2amcl process. This vulnerability is triggered via sending a crafted .yaml file...

9.8CVSS0.00599EPSS
Exploits0References3
OSV
OSV
added 2024/12/05 11:15 p.m.6 views

CVE-2024-37863

Open Robotics Robotic Operating System 2 ROS2 and Nav2 humble versions were discovered to contain a buffer overflow via the nav2amcl process. This vulnerability is triggered via sending a crafted .yaml file...

9.8CVSS6.1AI score0.00599EPSS
Exploits0References3
Rows per page
Query Builder