EUVD-2021-23720

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2019-13465

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the ROS communications-related packages aka roscomm or ros-melodic-ros-comm through 1.14.3. ROSASSERTMSG only works when...

CVE-2024-30667

This CVE entry is rejected and not used; it does not represent an active vulnerability entry.

CVE-2024-30662

CVE-2024-30662 is rejected/not used and does not represent an active vulnerability entry.

CVE-2024-30666

This CVE entry is rejected/not used and does not represent an active vulnerability.

CVE-2024-30659

CVE-2024-30659 is rejected/not used; this CVE entry is not active.

PT-2024-23550 · Unknown · Ros Melodic Morenia

Name of the Vulnerable Software and Affected Versions: ROS Robot Operating System Melodic Morenia versions 1 Description: An issue was discovered where the system transmits messages in plaintext, exposing sensitive information and making it vulnerable to man-in-the-middle MitM attacks. This allow...

PT-2024-23547 · Ros · Ros

Name of the Vulnerable Software and Affected Versions: ROS Robot Operating System Melodic Morenia versions ROS VERSION 1 and ROS PYTHON VERSION 3 Description: The issue allows attackers to execute arbitrary code, escalate privileges, and obtain sensitive information. It is described as a Shell...

CVE-2021-37146

An infinite loop in Open Robotics roscomm XMLRPC server in ROS Melodic through 1.4.11 and ROS Noetic through1.15.11 allows remote attackers to cause a Denial of Service in roscomm via a crafted XMLRPC call...

Open redirect

An infinite loop in Open Robotics roscomm XMLRPC server in ROS Melodic through 1.4.11 and ROS Noetic through1.15.11 allows remote attackers to cause a Denial of Service in roscomm via a crafted XMLRPC call...

CVE-2021-37146

An infinite loop in Open Robotics roscomm XMLRPC server in ROS Melodic through 1.4.11 and ROS Noetic through1.15.11 allows remote attackers to cause a Denial of Service in roscomm via a crafted XMLRPC call...

CVE-2021-37146

CVE-2021-37146 involves an infinite loop in the Open Robotics ros_comm XMLRPC server, affecting ROS Melodic <=1.4.11 and ROS Noetic

CVE-2021-37146

An infinite loop in Open Robotics roscomm XMLRPC server in ROS Melodic through 1.4.11 and ROS Noetic through1.15.11 allows remote attackers to cause a Denial of Service in roscomm via a crafted XMLRPC call...

Design/Logic Flaw

An issue was discovered in the ROS communications-related packages aka roscomm or ros-melodic-ros-comm through 1.14.3. ROSASSERTMSG only works when ROSASSERTENABLED is defined. This leads to a problem in the remove function in clients/roscpp/src/libros/spinner.cpp. When ROSASSERTENABLED is not...

CVE-2019-13465

CVE-2019-13465 affects ROS communications-related packages (ros_comm/ros-melodic-ros-comm) through 1.14.3. The root cause is that ROS_ASSERT_MSG only works when ROS_ASSERT_ENABLED is defined; when not defined, the iterator loop in remove() (clients/roscpp/src/libros/spinner.cpp) can run out of th...