CVE-2024-30961: Code Injection
First published: Thu Dec 05 2024(Updated: )
Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 (ROS2) navigation2- ROS2-humble and navigation 2-humble allows a local attacker to execute arbitrary code via the error-thrown mechanism in nav2_bt_navigator.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Openrobotics Robot Operating System | =2-humble | |
| Openrobotics Robot Operating System | =2-iron |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/references
- agent/first-publish-date
- agent/type
- agent/description
- agent/author
- agent/weakness
- agent/severity
- agent/event
- collector/mitre-cve
- source/MITRE
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- agent/source
- vendor/openrobotics
- canonical/openrobotics robot operating system
- version/openrobotics robot operating system/2-humble
- version/openrobotics robot operating system/2-iron