CVE-2025-62599

EPSS 0.03%
Veröffentlicht 03.02.2026 17:54:49
Zuletzt bearbeitet 09.04.2026 18:16:41
Quelle security-advisories@github.com
CVE-Watchlists
Login
Unerledigt
Login

eprosima Fast DDS affected by Out-of-Memory in readPropertySeq via Manipulated DATA Submessage when DDS Security is enabled

eprosima Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory (OOM) condition, resulting in remote termination of Fast-DDS.
If the fields of PID_IDENTITY_TOKEN or PID_PERMISSION_TOKEN in the DATA Submessage — specifically by tampering with the length field in readPropertySeq — are modified, an integer overflow occurs, leading to an OOM during the resize operation. This vulnerability is fixed in 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 4

NVD 6 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Eprosima ≫ Fast Dds Version < 2.6.11

Eprosima ≫ Fast Dds Version >= 3.0.0 < 3.3.1

Eprosima ≫ Fast Dds Version3.4.0

Debian ≫ Debian Linux Version11.0

Debian ≫ Debian Linux Version12.0

Debian ≫ Debian Linux Version13.0

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.071

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
security-advisories@github.com	8.6	3.9	4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

CWE-789 Memory Allocation with Excessive Size Value

The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.

https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-fc3f-wcj5-5cph

https://nvd.nist.gov/vuln/detail/CVE-2025-62599

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-62599

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-62599

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2025-62599