CVE-2023-51204

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 30, 2024
Updated: Feb 8, 2024
CWE ID 502

Summary

CVE-2023-51204 is an insecure deserialization vulnerability that affects ROS2 Foxy Fitzroy with ROS_VERSION=2 and ROS_PYTHON_VERSION=3. Attackers can exploit this vulnerability to execute arbitrary code using a crafted input. The vulnerability has a base severity of CRITICAL with a base score of 9.8 according to NVD@NIST. It has a high impact on integrity and confidentiality, and the attack vector is through the network. The vulnerability does not require any privileges or user interaction, and the attack complexity is low. The affected products are eEaeHv, and the remediation steps are not provided in the information available.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-51204 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options