9.8
CVSSv3

CVE-2024-41644

CVSSv4: NA | CVSSv3: 9.8 | CVSSv2: NA | VMScore: 1000 | EPSS: 0.0007 | KEV: Not Included
Published: 06/12/2024 Updated: 13/12/2024

Vulnerability Summary

Insecure Permissions in ROS2 Navigation2 Allow Arbitrary Code Execution

An insecure permissions vulnerability is present in Open Robotics Robotic Operating System 2 (ROS2) navigation2 version v.humble. This issue involves the dyn_param_handler_ component. It lets attackers run any code they want.

Vulnerable Product Search on Vulmon Subscribe to Product

openrobotics robot operating system 2