Описание
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_dwb_controller.
Ссылки
- Third Party Advisory
- ExploitIssue Tracking
- Third Party Advisory
- ExploitIssue Tracking
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:openrobotics:robot_operating_system:2:humble:*:*:*:*:*:*
cpe:2.3:a:openrobotics:robot_operating_system:2:iron:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00111
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-281
CWE-281
Связанные уязвимости
CVSS3: 9.8
github
около 1 года назад
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_dwb_controller.
EPSS
Процентиль: 30%
0.00111
Низкий
9.8 Critical
CVSS3
Дефекты
CWE-281
CWE-281