Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble version was discovered to contain a heap overflow in the nav2_amcl process. This vulnerability is triggered via sending a crafted message to the component /initialpose.
Metrics
Affected Vendors & Products
References
History
Tue, 17 Dec 2024 20:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Openrobotics
Openrobotics robot Operating System |
|
Weaknesses | CWE-787 | |
CPEs | cpe:2.3:a:openrobotics:robot_operating_system:2:humble:*:*:*:*:*:* cpe:2.3:a:openrobotics:robot_operating_system:2:iron:*:*:*:*:*:* |
|
Vendors & Products |
Openrobotics
Openrobotics robot Operating System |
Wed, 11 Dec 2024 19:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Weaknesses | CWE-120 | |
Metrics |
cvssV3_1
|
Fri, 06 Dec 2024 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble version was discovered to contain a heap overflow in the nav2_amcl process. This vulnerability is triggered via sending a crafted message to the component /initialpose. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-12-06T00:00:00
Updated: 2024-12-11T18:55:37.518Z
Reserved: 2024-06-21T00:00:00
Link: CVE-2024-38922
Vulnrichment
Updated: 2024-12-11T18:55:32.280Z
NVD
Status : Analyzed
Published: 2024-12-06T22:15:19.720
Modified: 2024-12-17T20:29:01.117
Link: CVE-2024-38922
Redhat
No data.