Shodan
Vulnerabilities
Vulnerable Software
Openrobotics:  Security Vulnerabilities
CVE-2024-41648
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_regulated_pure_pursuit_controller.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-12-06
CVE-2024-38921
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to contain a use-after-free via the nav2_amcl process. This vulnerability is triggered via remotely sending a request for change the value of dynamic-parameter`/amcl z_rand ` .
CVSS Score
9.8
EPSS Score
0.002
Published
2024-12-06
CVE-2024-38922
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble version was discovered to contain a heap overflow in the nav2_amcl process. This vulnerability is triggered via sending a crafted message to the component /initialpose.
CVSS Score
9.8
EPSS Score
0.002
Published
2024-12-06
CVE-2024-38923
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to contain a use-after-free via the nav2_amcl process. This vulnerability is triggered via remotely sending a request to change the value of dynamic-parameter`/amcl odom_frame_id` .
CVSS Score
9.8
EPSS Score
0.002
Published
2024-12-06
CVE-2024-38924
Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to contain a use-after-free via the nav2_amcl process. This vulnerability is triggered via remotely sending a request to change the value of dynamic-parameter`/amcl laser_model_type` .
CVSS Score
9.8
EPSS Score
0.002
Published
2024-12-06
CVE-2024-30961
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2- ROS2-humble and navigation 2-humble allows a local attacker to execute arbitrary code via the error-thrown mechanism in nav2_bt_navigator.
CVSS Score
7.8
EPSS Score
0.002
Published
2024-12-05
CVE-2024-30962
Buffer Overflow vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2- ROS2-humble and navigation 2-humble allows a local attacker to execute arbitrary code via the nav2_amcl process
CVSS Score
7.8
EPSS Score
0.002
Published
2024-12-05
CVE-2024-25196
Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to contain a buffer overflow via the nav2_controller process. This vulnerability is triggerd via sending a crafted .yaml file.
CVSS Score
3.3
EPSS Score
0.001
Published
2024-02-20
CVE-2024-25197
Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent() function at /src/layered_costmap.cpp.
CVSS Score
6.5
EPSS Score
0.002
Published
2024-02-20
CVE-2024-25198
Inappropriate pointer order of laser_scan_filter_.reset() and tf_listener_.reset() (amcl_node.cpp) in Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions leads to a use-after-free.
CVSS Score
9.1
EPSS Score
0.001
Published
2024-02-20


Products
Pricing
Contact Us

Shodan ® - All rights reserved