Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.1
CVE-2024-10838
- EPSS 0.88%
- Published 12.03.2025 13:03:47
- Last modified 31.07.2025 16:33:56
An integer underflow during deserialization may allow any unauthenticated user to read out of bounds heap memory. This may result into secret data or pointers revealing the layout of the address space to be included into a deserialized data structure...
9.8
CVE-2021-38441
- EPSS 0.15%
- Published 05.05.2022 17:15:09
- Last modified 21.11.2024 06:17:06
Eclipse CycloneDDS versions prior to 0.8.0 are vulnerable to a write-what-where condition, which may allow an attacker to write arbitrary values in the XML parser.
9.8
CVE-2021-38443
- EPSS 0.15%
- Published 05.05.2022 17:15:09
- Last modified 21.11.2024 06:17:06
Eclipse CycloneDDS versions prior to 0.8.0 improperly handle invalid structures, which may allow an attacker to write arbitrary values in the XML parser.
1