2 matches found
CVE-2021-38443
Summary: CVE-2021-38443 affects Eclipse CycloneDDS; versions prior to 0.8.0 improperly handle invalid structures in the XML parser, which may allow an attacker to write arbitrary values. The issue is supported by multiple sources in Connected documents and is reflected in NVD and vendor advisorie...
CVE-2021-38441
CVE-2021-38441 affects Eclipse CycloneDDS: versions prior to 0.8.0 are vulnerable to a write-what-where condition in the XML parser, allowing an attacker to write arbitrary values. Root cause is a flaw in the XML parser handling, leading to partial/high impact on confidentiality, integrity, and a...