Fast-DDS 输入验证错误漏洞

Fast-DDS is a complete DDS system open-sourced by eProsima. Versions of Fast-DDS prior to 3.4.1, 3.3.1, and 2.6.11 contained a vulnerability related to input validation errors. This vulnerability stemmed from modifying the length of the PIDIDENTITYTOKEN or PIDPERMISSIONTOKEN fields in the DATA...

Fast-DDS 输入验证错误漏洞

Fast-DDS is a complete DDS system open-sourced by eProsima. Versions of Fast-DDS prior to 3.4.1, 3.3.1, and 2.6.11 contained a vulnerability related to input validation errors. This vulnerability stemmed from modifying the length of the PIDIDENTITYTOKEN or PIDPERMISSIONTOKEN fields in the DATA...

Fast-DDS 安全漏洞

Fast-DDS is a complete DDS system open-sourced by eProsima. Versions of Fast-DDS prior to 3.4.1, 3.3.1, and 2.6.11 contained security vulnerabilities. These vulnerabilities stemmed from modifying the PIDIDENTITYTOKEN or PIDPERMISSIONSTOKEN fields in the DATA sub-message, leading to integer...

EProsima Fast Dds Security Vulnerability

EProsima Fast Dds is a standalone Cpp middleware implementation from EProsima, Spain. It is used to provide Omg Dds 1.4 and Omg Rtps 2.2 interoperable wired protocol standards. A security vulnerability exists in EProsima Fast DDS 2.11.1 and earlier versions, which stems from allowing an attacker ...

eProsima Fast DDS Security Vulnerability

eProsima Fast DDS is the C++ implementation of eProsima's OMG Object Management Group DDS Data Distribution Service standard. A security vulnerability exists in eProsima Fast DDS version 2.9.1, which stems from the fact that an incorrectly formatted GAP sub-message may trigger an assertion failur...

Object Computing OpenDDS 输入验证错误漏洞

Object Computing OpenDDS is an open source middleware framework for C++ and Java applications from Object Computing. An input validation error vulnerability exists in OpenDDS versions prior to 3.25, which arises from an error in parsing DATA sub-messages, and allows an attacker to remotely...

Inconsistency behavior between bAsset tokens and the standard cw20 tokens

Lines of code Vulnerability details Impact The implementation of the send function of bAsset tokens is inconsistent with the standard cw20's implementation. In the standard implementation, the msg and the transfer amount are passed to the recipient contract as a regular message. However, in the...

Nanopb Buffer Error Vulnerability

Nanopb is a protocol buffer implementation for microprocessors by the individual developers of Nanopb. A buffer error vulnerability exists in Nanopb version 0.4.4 and versions prior to 0.3.9.7, which stems from the possibility that a decoded message in a particular format may leak memory if dynam...