CVE-2024-30258

CVSS 3.1 Score 8.2 of 10 (high)

Details

Published May 14, 2024

CWE ID 20

Summary

CVE-2024-30258 is a vulnerability affecting the FastDDS open-source implementation of the Data Distribution Service (DDS) standard from the Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, FastDDS processes are susceptible to a remote crash due to malformed RTPS packets. The flaw occurs during pthread creation, allowing an attacker to potentially launch a denial-of-service (DoS) attack. Versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8 include a patch to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v52hwy
https://www.cve.org/CVERecord?id=CVE-2024-30258
https://nvd.nist.gov/vuln/detail/CVE-2024-30258

Back to Vulnerability Database

CVE-2024-30258

CVSS 3.1 Score 8.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations