3 matches found
Integer Overflow or Wraparound
Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the readBinaryPropertySeq function when handling manipulated DATA Submessages with altered length fields. An attacker can cause a remote out-of-memory condition and terminate the service by sending...
CVE-2025-62600 eprosima Fast DDS affected by Out-of-Memory in readBinaryPropertySeq via Manipulated DATA Submessage when DDS Security is enabled
eprosima Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an...
CVE-2025-62600
CVE-2025-62600 affects eProsima Fast DDS prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1. When security mode is enabled and a publisher sends a DATA Submessage in an SPDP packet, tampering with the length of PID_IDENTITY_TOKEN or PID_PERMISSION_TOKEN can cause an integer overflow during readBina...