Deserialization of untrusted data

Insecure deserialization in ROS2 Foxy Fitzroy ROSVERSION=2 and ROSPYTHONVERSION=3 allows attackers to execute arbitrary code via a crafted input...

Command injection

OS command injection vulnerability in command processing or system call componentsROS2 Robot Operating System 2 Foxy Fitzroy, with ROSVERSION=2 and ROSPYTHONVERSION=3 allows attackers to run arbitrary commands...

Design/Logic Flaw

An issue in the permission and access control components within ROS2 Foxy Fitzroy ROSVERSION=2 and ROSPYTHONVERSION=3 allows attackers to gain escalate privileges...

Number withdrawn

ROS2 Foxy Fitzroy is an application of the ROS2 organization. This CVE number has been withdrawn...

CVE-2023-51204

CVE-2023-51204 was withdrawn (CNA) and is not an active vulnerability entry. Connected sources describe a separate vulnerability in ROS2 Foxy Fitzroy: insecure deserialization in ROS2 Foxy Fitzroy (ROS 2, ROS_VERSION=2; ROS_PYTHON_VERSION=3) that could allow arbitrary code execution via crafted i...

Default credentials

An issue in the default configurations of ROS2 Foxy Fitzroy ROSVERSION=2 and ROSPYTHONVERSION=3 allows unauthenticated attackers to authenticate using default credentials...

CVE-2023-33566

CVE-2023-33566 is rejected; this entry does not represent an active vulnerability.

CVE-2023-33567

CVE-2023-33567 is rejected/not used; this CVE ID does not represent an active vulnerability entry.