Описание
RTI Connext Professional versions 4.1 to 6.1.0, and Connext Micro versions 2.4 and later are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic. This may result in a denial-of-service condition and information exposure.
Ссылки
- Permissions RequiredVendor Advisory
- Third Party AdvisoryUS Government Resource
- Permissions RequiredVendor Advisory
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия от 2.4 (включая)Версия от 4.2 (включая) до 6.1.0 (исключая)Версия от 4.2 (включая) до 6.1.0 (исключая)
Одно из
cpe:2.3:a:rti:connext_dds_micro:*:*:*:*:*:*:*:*
cpe:2.3:a:rti:connext_professional:*:*:*:*:*:*:*:*
cpe:2.3:a:rti:connext_secure:*:*:*:*:*:*:*:*
EPSS
Процентиль: 29%
0.00105
Низкий
8.2 High
CVSS3
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-406
Связанные уязвимости
CVSS3: 9.1
github
почти 4 года назад
RTI Connext DDS Professional, Connext DDS Secure versions 4.2x to 6.1.0, and Connext DDS Micro versions 2.4 and later are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic. This may result in a denial-of-service condition and information exposure.
EPSS
Процентиль: 29%
0.00105
Низкий
8.2 High
CVSS3
9.1 Critical
CVSS3
6.4 Medium
CVSS2
Дефекты
CWE-406