Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
objectcomputing opendds vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-52427
In OpenDDS up to and including 3.27, there is a segmentation fault for a DataWriter with a large value of resource_limits.max_samples. NOTE: the vendor's position is that the product is not designed to handle a max_samples value that is too large for the amount of memory on ...
Objectcomputing Opendds
NA
CVE-2023-37915
OpenDDS is an open source C++ implementation of the Object Management Group (OMG) Data Distribution Service (DDS). OpenDDS crashes while parsing a malformed `PID_PROPERTY_LIST` in a DATA submessage during participant discovery. Attackers can remotely crash OpenDDS processes by se...
Objectcomputing Opendds 3.23.1
NA
CVE-2023-23932
OpenDDS is an open source C++ implementation of the Object Management Group (OMG) Data Distribution Service (DDS). OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1.
Objectcomputing Opendds
6.4
CVSSv2
CVE-2021-38429
OCI OpenDDS versions before 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition and information exposure.
Objectcomputing Opendds
7.5
CVSSv2
CVE-2021-38445
OCI OpenDDS versions before 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an malicious user to remotely execute arbitrary code.
Objectcomputing Opendds
4.3
CVSSv2
CVE-2021-38447
OCI OpenDDS versions before 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition.
Objectcomputing Opendds
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started