Lucene search

Connext Dds Professional Security Vulnerabilities - February

cve

CVE-2021-38427

RTI Connext DDS Professional and Connext DDS Secure Versions 4.2.x to 6.1.0 are vulnerable to a stack-based buffer overflow, which may allow a local attacker to execute arbitrary code.

7.8CVSS

7.8AI Score

0.0004EPSS

2022-05-05 05:15 PM

cve

CVE-2021-38433

RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6.1.0 vulnerable to a stack-based buffer overflow, which may allow a local attacker to execute arbitrary code.

7.8CVSS

7.8AI Score

0.0004EPSS

2022-05-05 05:15 PM

cve

CVE-2021-38435

RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6.1.0 not correctly calculate the size when allocating the buffer, which may result in a buffer overflow.

9.8CVSS

9.3AI Score

0.002EPSS

2022-05-05 05:15 PM

cve

CVE-2021-38487

RTI Connext DDS Professional, Connext DDS Secure versions 4.2x to 6.1.0, and Connext DDS Micro versions 2.4 and later are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic. This may result in a denial-of-service condition and information expo...

9.1CVSS

8.8AI Score

0.002EPSS

2022-05-05 05:15 PM