Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that there was not reasonable evidence to determine the existence of a vulnerability.
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
83 bogus CVEs assigned to Robot Operating System (ROS)
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: Mark Esler ...
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
Re: 83 bogus CVEs assigned to Robot Operating System (ROS)
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: Yash P ...
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
Re: 83 bogus CVEs assigned to Robot Operating System (ROS)
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: Mark E ...
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
Re: 83 bogus CVEs assigned to Robot Operating System (ROS)
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: Yash P ...
Remote Command Execution Vulnerability in ROS2 Iron Irwini
CVE ID
CVE-2024-30686
Title
Remote Command Execution Vulnerability in ROS2 Iron Irwini
Vulnerability Type
Remote Command Execution
Severity
TBD
Vendor
The Open Source Robotics Foundation (OSRF)
Products Affected
ROS2 Iron Irwini (ROS_VERSION=2 and ROS_PYTHON_VERSION=3)
Description
A critical vulnerability has been identified in ROS2 Iron Irwini, particularly in configurations w