216.73.216.75

CVE-2024-30961

· Published 05/12/2024 23:15 · Modified 18/12/2024 17:18

Labels: CVE-2024-30961 2024-12-05CVE-2024-30961CWE-94NVD-CWE-noinfo[email protected]

Essential information

Published
05/12/2024 23:15
Modified
18/12/2024 17:18
Author
Creator
CVSS
7.8 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2- ROS2-humble and navigation 2-humble allows a local attacker to execute arbitrary code via the error-thrown mechanism in nav2_bt_navigator.

NVD status

Status
Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
openrobotics / robot operating system cpe:2.3:a:openrobotics:robot_operating_system:2:humble:*:*:*:*:*:*
openrobotics / robot operating system cpe:2.3:a:openrobotics:robot_operating_system:2:iron:*:*:*:*:*:*

References