Lucene search
K

283 matches found

NVD
NVD
added 2025/07/17 8:15 p.m.43 views

CVE-2024-41921

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'echo' verb, which allows a user to introspect a ROS topic and accepts a user-provided Python...

7.8CVSS0.0019EPSS
Exploits0References1
OSV
OSV
added 2025/07/17 8:15 p.m.5 views

DEBIAN-CVE-2024-39289

A code execution vulnerability has been discovered in the Robot Operating System ROS 'rosparam' tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability stems from the use of the eval function to process unsanitized, user-supplied parameter values via special converters fo...

7.8CVSS6.4AI score0.00177EPSS
Exploits0References1
OSV
OSV
added 2025/07/17 8:15 p.m.5 views

DEBIAN-CVE-2024-41921

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'echo' verb, which allows a user to introspect a ROS topic and accepts a user-provided Python...

7.8CVSS5.9AI score0.0019EPSS
Exploits0References1
OSV
OSV
added 2025/07/17 8:15 p.m.3 views

DEBIAN-CVE-2024-39835

A code injection vulnerability has been identified in the Robot Operating System ROS 'roslaunch' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability arises from the use of the eval method to process user-supplied, unsanitized parameter values within the...

7.8CVSS5.9AI score0.00175EPSS
Exploits0References1
OSV
OSV
added 2025/07/17 8:15 p.m.4 views

CVE-2024-41148

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'hz' verb, which reports the publishing rate of a topic and accepts a user-provided Python...

7.8CVSS6.9AI score
Exploits0References1
OSV
OSV
added 2025/07/17 8:15 p.m.1 views

CVE-2024-39289

A code execution vulnerability has been discovered in the Robot Operating System ROS 'rosparam' tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability stems from the use of the eval function to process unsanitized, user-supplied parameter values via special converters fo...

7.8CVSS7AI score
Exploits0References1
OSV
OSV
added 2025/07/17 8:15 p.m.3 views

CVE-2024-41921

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'echo' verb, which allows a user to introspect a ROS topic and accepts a user-provided Python...

7.8CVSS6.9AI score
Exploits0References1
OSV
OSV
added 2025/07/17 8:15 p.m.3 views

UBUNTU-CVE-2024-41148

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'hz' verb, which reports the publishing rate of a topic and accepts a user-provided Python...

7.8CVSS6.1AI score0.0019EPSS
Exploits0References3
OSV
OSV
added 2025/07/17 8:15 p.m.2 views

UBUNTU-CVE-2025-3753

A code execution vulnerability has been identified in the Robot Operating System ROS 'rosbag' tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability arises from the use of the eval function to process unsanitized, user-supplied input in the 'rosbag filter' command. This...

7.8CVSS6.3AI score0.00195EPSS
Exploits0References3
OSV
OSV
added 2025/07/17 8:15 p.m.4 views

UBUNTU-CVE-2024-39289

A code execution vulnerability has been discovered in the Robot Operating System ROS 'rosparam' tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability stems from the use of the eval function to process unsanitized, user-supplied parameter values via special converters fo...

7.8CVSS6.3AI score0.00177EPSS
Exploits0References3
OSV
OSV
added 2025/07/17 8:15 p.m.3 views

UBUNTU-CVE-2024-39835

A code injection vulnerability has been identified in the Robot Operating System ROS 'roslaunch' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability arises from the use of the eval method to process user-supplied, unsanitized parameter values within the...

7.8CVSS6AI score0.00175EPSS
Exploits0References3
OSV
OSV
added 2025/07/17 8:15 p.m.4 views

UBUNTU-CVE-2024-41921

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'echo' verb, which allows a user to introspect a ROS topic and accepts a user-provided Python...

7.8CVSS6.1AI score0.0019EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/17 7:14 p.m.10 views

CVE-2025-3753 Unsafe use of eval() method in rosbag tool

A code execution vulnerability has been identified in the Robot Operating System ROS 'rosbag' tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability arises from the use of the eval function to process unsanitized, user-supplied input in the 'rosbag filter' command. This...

7.8CVSS0.00195EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/07/17 7:14 p.m.6 views

CVE-2025-3753

A code execution vulnerability has been identified in the Robot Operating System ROS 'rosbag' tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability arises from the use of the eval function to process unsanitized, user-supplied input in the 'rosbag filter' command. This...

7.8CVSS6.4AI score0.00195EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/07/17 7:13 p.m.5 views

CVE-2024-41921 Unsafe use of eval() method in rostopic echo tool

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'echo' verb, which allows a user to introspect a ROS topic and accepts a user-provided Python...

7.8CVSS7.2AI score0.0019EPSS
Exploits0References1
CVE
CVE
added 2025/07/17 7:13 p.m.30 views

CVE-2024-41921

The CVE describes a code-injection vulnerability in the ROS rostopic echo command. Affected product: Robot Operating System (ROS) rostopic tool, affecting Noetic Ninjemys and earlier. Root cause: the echo verb accepts a user-supplied Python expression through --filter, and passes it directly to e...

7.8CVSS7.3AI score0.0019EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2025/07/17 7:13 p.m.6 views

CVE-2024-41921

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'echo' verb, which allows a user to introspect a ROS topic and accepts a user-provided Python...

7.8CVSS5.9AI score0.0019EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/07/17 7:12 p.m.7 views

CVE-2024-41148 Unsafe use of eval() method in rostopic hz tool

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'hz' verb, which reports the publishing rate of a topic and accepts a user-provided Python...

7.8CVSS7.2AI score0.0019EPSS
Exploits0References1
CVE
CVE
added 2025/07/17 7:12 p.m.35 views

CVE-2024-41148

CVE-2024-41148 describes a code-injection flaw in the ROS rostopic hz command. The --filter option accepts a user-supplied Python expression which is passed directly to eval() without sanitization, enabling a local user to craft and execute arbitrary code. Affected releases include ROS Noetic Nin...

7.8CVSS7.3AI score0.0019EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2025/07/17 7:12 p.m.5 views

CVE-2024-41148

A code injection vulnerability has been discovered in the Robot Operating System ROS 'rostopic' command-line tool, affecting ROS distributions Noetic Ninjemys and earlier. The vulnerability lies in the 'hz' verb, which reports the publishing rate of a topic and accepts a user-provided Python...

7.8CVSS5.9AI score0.0019EPSS
Exploits0
Rows per page
Query Builder