Eprosima

Fast Dds

17 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2025-24807

  • EPSS 0.04%
  • Published 11.02.2025 16:15:51
  • Last modified 21.02.2025 15:26:57

eprosima Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to versions 2.6.10, 2.10.7, 2.14.5, 3.0.2, 3.1.2, and 3.2.0, per design, PermissionsCA is not full chain validated, ...

7.5

CVE-2024-30259

Exploit
  • EPSS 1.1%
  • Published 14.05.2024 15:22:15
  • Last modified 27.01.2025 18:16:00

FastDDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves malformed `RTPS` packet, heap buffer overflow occurs on...

7.5

CVE-2024-30258

Exploit
  • EPSS 1.3%
  • Published 14.05.2024 15:22:15
  • Last modified 27.01.2025 18:19:29

FastDDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed `RTPS` packet, the subscriber crashes when ...

5.5

CVE-2024-30917

Exploit
  • EPSS 0.05%
  • Published 11.04.2024 06:15:07
  • Last modified 17.06.2025 20:51:18

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service (DoS) and obtain sensitive information via a crafted history_depth parameter in DurabilityService QoS component.

7.1

CVE-2024-30916

Exploit
  • EPSS 0.05%
  • Published 11.04.2024 06:15:07
  • Last modified 10.02.2025 23:15:13

An issue was discovered in eProsima FastDDS v.2.14.0 and before, allows a local attacker to cause a denial of service (DoS) and obtain sensitive information via a crafted max_samples parameter in DurabilityService QoS component.

7.5

CVE-2024-28231

Exploit
  • EPSS 0.19%
  • Published 20.03.2024 20:15:08
  • Last modified 30.06.2025 13:32:58

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.14.0, 2.13.4, 2.12.3, 2.10.4, and 2.6.8, manipulated DATA Submessage can cause a heap overflow error in the Fast-D...

7.5

CVE-2024-26369

  • EPSS 0.14%
  • Published 19.03.2024 06:15:06
  • Last modified 21.11.2024 09:02:25

An issue in the HistoryQosPolicy component of FastDDS v2.12.x, v2.11.x, v2.10.x, and v2.6.x leads to a SIGABRT (signal abort) upon receiving DataWriter's data.

9.8

CVE-2023-50716

  • EPSS 1.12%
  • Published 06.03.2024 18:15:46
  • Last modified 16.04.2025 16:21:22

eProsima Fast DDS (formerly Fast RTPS) is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.13.0, 2.12.2, 2.11.3, 2.10.3, and 2.6.7, an invalid DATA_FRAG Submessage causes a bad-free er...

9.6

CVE-2023-50257

  • EPSS 0.07%
  • Published 19.02.2024 20:15:45
  • Last modified 21.11.2024 08:36:45

eProsima Fast DDS (formerly Fast RTPS) is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Even with the application of SROS2, due to the issue where the data (`p[UD]`) and `guid` values used to disconnec...

7.5

CVE-2023-42459

Exploit
  • EPSS 0.29%
  • Published 16.10.2023 21:15:10
  • Last modified 11.04.2025 14:47:56

Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). In affected versions specific DATA submessages can be sent to a discovery locator which may trigger a free error. This can remotely...