Opendds@* Security Vulnerabilities and Issues — Opendds@* CVE List

Lucene search

ObjectcomputingOpendds*

4 matches found

CVE•added 2022/05/05 5:15 p.m.•60 views

CVE-2021-38445

OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code.

9.8CVSS8.5AI score0.00662EPSS

CVE•added 2022/05/05 5:15 p.m.•58 views

CVE-2021-38447

OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition.

8.6CVSS7.6AI score0.00092EPSS

CVE•added 2022/05/05 5:15 p.m.•45 views

CVE-2021-38429

OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition and information exposure.

9.1CVSS7.7AI score0.00057EPSS

CVE•added 2023/02/03 9:15 p.m.•36 views

CVE-2023-23932

OpenDDS is an open source C++ implementation of the Object Management Group (OMG) Data Distribution Service (DDS). OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1.

7.5CVSS6.2AI score0.00062EPSS