CVE-2024-44854

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 6, 2024
Updated: Dec 13, 2024
CWE ID 476

Summary

CVE-2024-44854 is a newly discovered vulnerability affecting the Open Robotics Robotic Operating System 2 (ROS2) navigation2 package version humble. This issue involves a NULL pointer dereference in the smoothPlan() component, which can result in unintended system behavior or crashes. An attacker could potentially exploit this vulnerability to execute arbitrary code or cause a denial-of-service condition. It is recommended that users of the affected version upgrade to a patched release as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Openrobotics Robot Operating System

Affected Vendors

  • Open Robotics