9.8
CVSSv3

CVE-2024-41648

CVSSv4: NA | CVSSv3: 9.8 | CVSSv2: NA | VMScore: 1000 | EPSS: 0.0007 | KEV: Not Included
Published: 06/12/2024 Updated: 13/12/2024

Vulnerability Summary

Insecure Permissions in ROS2 Allows Arbitrary Code Execution

Open Robotics Robotic Operating System 2 (ROS2) navigation2 v.humble has a problem with Insecure Permissions. An attacker can use this vulnerability to run any code they want by sending a crafted script to the nav2_regulated_pure_pursuit_controller.

Vulnerable Product Search on Vulmon Subscribe to Product

openrobotics robot operating system 2