Описание
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_costmap_2d.
Ссылки
- Third Party Advisory
- ExploitIssue Tracking
- Third Party Advisory
- ExploitIssue Tracking
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:openrobotics:robot_operating_system:2:humble:*:*:*:*:*:*
cpe:2.3:a:openrobotics:robot_operating_system:2:iron:*:*:*:*:*:*
EPSS
Процентиль: 27%
0.00097
Низкий
9.8 Critical
CVSS3
7.1 High
CVSS3
Дефекты
CWE-281
CWE-281
Связанные уязвимости
CVSS3: 7.1
github
около 1 года назад
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_costmap_2d.
EPSS
Процентиль: 27%
0.00097
Низкий
9.8 Critical
CVSS3
7.1 High
CVSS3
Дефекты
CWE-281
CWE-281