Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that there was not reasonable evidence to determine the existence of a vulnerability.
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
83 bogus CVEs assigned to Robot Operating System (ROS)
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: Mark Esler ...
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
Re: 83 bogus CVEs assigned to Robot Operating System (ROS)
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: Yash P ...
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
Re: 83 bogus CVEs assigned to Robot Operating System (ROS)
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: Mark E ...
<!--X-Body-Begin-->
<!--X-User-Header-->
oss-sec
mailing list archives
<!--X-User-Header-End-->
<!--X-TopPNI-->
By Date
By Thread
</form>
<!--X-TopPNI-End-->
<!--X-MsgBody-->
<!--X-Subject-Header-Begin-->
Re: 83 bogus CVEs assigned to Robot Operating System (ROS)
<!--X-Subject-Header-End-->
<!--X-Head-of-Message-->
From: Yash P ...
Unauthorized Node Injection Vulnerability in ROS2 Galactic Geochelone
CVE ID
CVE-2024-30690
Title
Unauthorized Node Injection Vulnerability in ROS2 Galactic Geochelone
Vulnerability Type
Injection
Severity
TBD
Vendor
The Open Source Robotics Foundation (OSRF)
Products Affected
ROS2 Galactic Geochelone (ROS_VERSION=2 and ROS_PYTHON_VERSION=3)
Description
An unauthorized node injection vulnerability has been identified in ROS2 Galactic Geochelone v
Vulmon