Описание
An unauthorized node injection vulnerability has been identified in ROS2 Foxy Fitzroy versions where ROS_VERSION is 2 and ROS_PYTHON_VERSION is 3. This vulnerability could allow a malicious user to inject malicious ROS2 nodes into the system remotely. Once injected, these nodes could disrupt the normal operations of the system or cause other potentially harmful behavior.
An unauthorized node injection vulnerability has been identified in ROS2 Foxy Fitzroy versions where ROS_VERSION is 2 and ROS_PYTHON_VERSION is 3. This vulnerability could allow a malicious user to inject malicious ROS2 nodes into the system remotely. Once injected, these nodes could disrupt the normal operations of the system or cause other potentially harmful behavior.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2023-33566
- https://github.com/16yashpatel/CVE-2023-33566
- http://www.openwall.com/lists/oss-security/2024/04/23/2
- http://www.openwall.com/lists/oss-security/2024/04/23/3
- http://www.openwall.com/lists/oss-security/2024/04/23/4
- http://www.openwall.com/lists/oss-security/2024/04/23/5
Связанные уязвимости
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that there was not reasonable evidence to determine the existence of a vulnerability.