9.8
CVSSv3

CVE-2024-38924

CVSSv4: NA | CVSSv3: 9.8 | CVSSv2: NA | VMScore: 1000 | EPSS: 0.0007 | KEV: Not Included
Published: 06/12/2024 Updated: 17/12/2024

Vulnerability Summary

Use-After-Free Vulnerability in ROS2 and Nav2 Humble Versions

Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions have a vulnerability called use-after-free in the nav2_amcl process. This issue can be triggered from afar by sending a request to change the value of the dynamic-parameter `/amcl laser_model_type`.

Vulnerable Product Search on Vulmon Subscribe to Product

openrobotics robot operating system 2