Описание
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to contain a use-after-free via the nav2_amcl process. This vulnerability is triggerd via remotely sending a request for change the value of dynamic-parameter/amcl max_beams .
EPSS
Процентиль: 49%
0.00261
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-416
Связанные уязвимости
CVSS3: 9.1
github
около 1 года назад
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to contain a use-after-free via the nav2_amcl process. This vulnerability is triggerd via remotely sending a request for change the value of dynamic-parameter`/amcl max_beams` .
EPSS
Процентиль: 49%
0.00261
Низкий
9.1 Critical
CVSS3
Дефекты
CWE-416