CVE-2023-51204

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 30, 2024
Updated: Feb 8, 2024
CWE ID 502

Summary

CVE-2023-51204 is an insecure deserialization vulnerability that affects ROS2 Foxy Fitzroy with ROS_VERSION=2 and ROS_PYTHON_VERSION=3. Attackers can exploit this vulnerability to execute arbitrary code using a crafted input. The vulnerability has a base severity of CRITICAL with a base score of 9.8 according to NVD@NIST. It has a high impact on integrity and confidentiality, and the attack vector is through the network. The vulnerability does not require any privileges or user interaction, and the attack complexity is low. The affected products are eEaeHv, and the remediation steps are not provided in the information available.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share