Lucene search
K

99 matches found

OSV
OSV
added 2024/05/13 2:45 p.m.14 views

CVE-2024-30259 FastDDS heap buffer overflow when publisher sends malformed packet

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves malformed RTPS packet, heap buffer overflow occurs on the subscriber. This can remotely crash any Fast-DDS...

8.2CVSS8.2AI score0.00866EPSS
Exploits1References5
CVE
CVE
added 2024/05/13 2:41 p.m.65 views

CVE-2024-30258

Affected product: Fast-DDS (eProsima Fast DDS), a C++ implementation of the DDS standard. The issue occurs when a publisher sends a malformed RTPS packet, causing the subscriber to crash during pthread creation. This can remotely crash any Fast-DDS process, potentially enabling a denial-of-servic...

8.2CVSS6.7AI score0.00791EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/13 2:41 p.m.22 views

CVE-2024-30258 FastDDS crash when publisher send malformed packet

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed RTPS packet, the subscriber crashes when creating pthread. This can remotely crash any Fast-DD...

8.2CVSS6.8AI score0.00791EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/05/13 2:41 p.m.28 views

CVE-2024-30258 FastDDS crash when publisher send malformed packet

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed RTPS packet, the subscriber crashes when creating pthread. This can remotely crash any Fast-DD...

8.2CVSS8.4AI score0.00791EPSS
Exploits1References3
OSV
OSV
added 2024/05/13 2:41 p.m.17 views

CVE-2024-30258 FastDDS crash when publisher send malformed packet

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed RTPS packet, the subscriber crashes when creating pthread. This can remotely crash any Fast-DD...

8.2CVSS7.9AI score0.00791EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2024/05/13 2:41 p.m.13 views

CVE-2024-30258

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed RTPS packet, the subscriber crashes when creating pthread. This can remotely crash any Fast-DD...

8.2CVSS8.2AI score0.00791EPSS
Exploits1
OSV
OSV
added 2024/04/11 6:15 a.m.1 views

DEBIAN-CVE-2024-30916

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted maxsamples parameter in DurabilityService QoS component...

7.1CVSS5.2AI score0.00235EPSS
Exploits1References1
OSV
OSV
added 2024/04/11 6:15 a.m.4 views

DEBIAN-CVE-2024-30917

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted historydepth parameter in DurabilityService QoS component...

5.5CVSS5.2AI score0.00221EPSS
Exploits1References1
OSV
OSV
added 2024/04/11 6:15 a.m.8 views

CVE-2024-30917

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted historydepth parameter in DurabilityService QoS component...

5.5CVSS5.3AI score
Exploits0References1
OSV
OSV
added 2024/04/11 6:15 a.m.7 views

CVE-2024-30916

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted maxsamples parameter in DurabilityService QoS component...

7.1CVSS6.7AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2024/04/11 6:15 a.m.23 views

CVE-2024-30917

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted historydepth parameter in DurabilityService QoS component...

5.5CVSS5.9AI score0.00221EPSS
Exploits1References2
OSV
OSV
added 2024/04/11 6:15 a.m.1 views

UBUNTU-CVE-2024-30917

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted historydepth parameter in DurabilityService QoS component...

5.5CVSS5.8AI score0.00221EPSS
Exploits1References3
OSV
OSV
added 2024/04/11 6:15 a.m.1 views

UBUNTU-CVE-2024-30916

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted maxsamples parameter in DurabilityService QoS component...

7.1CVSS5.8AI score0.00235EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/04/11 12:0 a.m.16 views

CVE-2024-30917

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted historydepth parameter in DurabilityService QoS component...

6.4AI score0.00221EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/04/11 12:0 a.m.8 views

CVE-2024-30916

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted maxsamples parameter in DurabilityService QoS component...

6.7AI score0.00235EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/04/11 12:0 a.m.6 views

PT-2024-23668 · Eprosima +1 · Eprosima Fast Dds +1

Name of the Vulnerable Software and Affected Versions: eProsima FastDDS versions 2.14.0 and earlier Description: An issue allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted history depth parameter in the DurabilityService QoS component...

5.5CVSS6.4AI score0.00221EPSS
Exploits1References11
Cvelist
Cvelist
added 2024/04/11 12:0 a.m.22 views

CVE-2024-30916

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted maxsamples parameter in DurabilityService QoS component...

6.4AI score0.00235EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/04/11 12:0 a.m.14 views

CVE-2024-30917

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted historydepth parameter in DurabilityService QoS component...

6.7AI score0.00221EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2024/04/11 12:0 a.m.20 views

CVE-2024-30916

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service DoS and obtain sensitive information via a crafted maxsamples parameter in DurabilityService QoS component...

7.1CVSS6.7AI score0.00235EPSS
Exploits1
NVD
NVD
added 2024/03/19 6:15 a.m.12 views

CVE-2024-26369

An issue in the HistoryQosPolicy component of FastDDS v2.12.x, v2.11.x, v2.10.x, and v2.6.x leads to a SIGABRT signal abort upon receiving DataWriter's data...

7.5CVSS6.5AI score0.00621EPSS
Exploits0References2
Rows per page
Query Builder