CVE-2021-38425
published 2022-05-05CVE-2021-38425: eProsima Fast DDS versions prior to 2.4.0 (#2269) are susceptible to exploitation when an attacker sends a specially crafted packet to flood a target device…
critical9.1CVSS 3.1
AVNACLPRNUINSUCHINAH
eProsima Fast DDS versions prior to 2.4.0 (#2269) are susceptible to exploitation when an attacker sends a specially crafted packet to flood a target device with unwanted traffic, which may result in a denial-of-service condition and information exposure.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | fastdds | < fastdds 2.6.1+ds-1 (bookworm) | fastdds 2.6.1+ds-1 (bookworm) |
| eprosima | fast_dds | < 2.4.0 | 2.4.0 |
| eprosima | fast_dds | >= unspecified < 2.4.0 (#2269) | 2.4.0 (#2269) |
CVSS provenance
nvdv3.19.1CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
osv9.1CRITICAL