Описание
An OS command injection vulnerability has been discovered in ROS2 Iron Irwini version ROS_VERSION 2 and ROS_PYTHON_VERSION 3, allows attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the command processing or system call components in ROS2.
An OS command injection vulnerability has been discovered in ROS2 Iron Irwini version ROS_VERSION 2 and ROS_PYTHON_VERSION 3, allows attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the command processing or system call components in ROS2.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2024-30681
- https://github.com/yashpatelphd/CVE-2024-30681
- http://www.openwall.com/lists/oss-security/2024/04/23/2
- http://www.openwall.com/lists/oss-security/2024/04/23/3
- http://www.openwall.com/lists/oss-security/2024/04/23/4
- http://www.openwall.com/lists/oss-security/2024/04/23/5
CVE ID
Связанные уязвимости
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that there was not reasonable evidence to determine the existence of a vulnerability.