CVE-2026-26011
- EPSS 0.12%
- Veröffentlicht 12.02.2026 20:42:50
- Zuletzt bearbeitet 23.02.2026 17:00:05
navigation2 is a ROS 2 Navigation Framework and System. In 1.3.11 and earlier, a critical heap out-of-bounds write vulnerability exists in Nav2 AMCL's particle filter clustering logic. By publishing a single crafted geometry_msgs/PoseWithCovarianceSt...
CVE-2024-25196
- EPSS 0.06%
- Veröffentlicht 20.02.2024 14:15:09
- Zuletzt bearbeitet 02.04.2025 20:15:41
Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to contain a buffer overflow via the nav2_controller process. This vulnerability is triggerd via sending a crafted .yaml file.
CVE-2024-25197
- EPSS 0.17%
- Veröffentlicht 20.02.2024 14:15:09
- Zuletzt bearbeitet 02.04.2025 20:15:52
Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent() function at /src/layered_costmap.cpp.
CVE-2024-25198
- EPSS 0.07%
- Veröffentlicht 20.02.2024 14:15:09
- Zuletzt bearbeitet 02.04.2025 20:16:45
Inappropriate pointer order of laser_scan_filter_.reset() and tf_listener_.reset() (amcl_node.cpp) in Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions leads to a use-after-free.
CVE-2024-25199
- EPSS 0.07%
- Veröffentlicht 20.02.2024 14:15:09
- Zuletzt bearbeitet 02.04.2025 20:16:54
Inappropriate pointer order of map_sub_ and map_free(map_) (amcl_node.cpp) in Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions leads to a use-after-free.