CVE-2024-28231Heap-based Buffer Overflow in Fast-dds

CWE-122Heap-based Buffer OverflowCWE-787Out-of-bounds Write4 documents4 sources
Severity
7.5HIGHNVD
CNA9.6
EPSS
0.9%
top 25.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Eprosima Fast-ddsEprosima Fast DDS
Timeline
PublishedMar 20

Description

eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group. Prior to versions 2.14.0, 2.13.4, 2.12.3, 2.10.4, and 2.6.8, manipulated DATA Submessage can cause a heap overflow error in the Fast-DDS process, causing the process to be terminated remotely. Additionally, the payload_size in the DATA Submessage packet is declared as uint32_t. When a negative number, such as -1, is input into this variable, it results in an Integer Overflow (for e

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5eprosima/fast-dds< 2.6.8+3
NVDeprosima/fast_dds2.7.02.10.4+3

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

2
OSV
CVE-2024-28231: eprosima Fast DDS is a C++ implementation of the Data Distribution Service standard of the Object Management Group2024-03-20
CVEList
Manipulated DATA Submessage causes a heap-buffer-overflow error2024-03-20

📋Vendor Advisories

1
Debian
CVE-2024-28231: fastdds - eprosima Fast DDS is a C++ implementation of the Data Distribution Service stand...2024
CVE-2024-28231 — Heap-based Buffer Overflow in Fast-dds | cvebase