mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 01:02:25 +00:00
24 lines
1.5 KiB
JSON
24 lines
1.5 KiB
JSON
{
|
|
"id": "CVE-2024-29455",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2024-04-11T05:15:47.477",
|
|
"lastModified": "2024-04-17T01:15:07.730",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "An arbitrary file upload vulnerability has been discovered in ROS2 Humble Hawksbill in ROS_VERSION 2 and ROS_PYTHON_VERSION 3, allows attackers to execute arbitrary code, cause a denial of service (DoS), and obtain sensitive information via crafted payload to the file upload mechanism of the ROS2 system, including the server\u2019s functionality for handling file uploads and the associated validation processes. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Se ha descubierto una vulnerabilidad de carga de archivos arbitraria en ROS2 Humble Hawksbill en ROS_VERSION 2 y ROS_PYTHON_VERSION 3, que permite a los atacantes ejecutar c\u00f3digo arbitrario, provocar una denegaci\u00f3n de servicio (DoS) y obtener informaci\u00f3n confidencial a trav\u00e9s de un payload manipulado para el mecanismo de carga de archivos de ROS2 sistema, incluida la funcionalidad del servidor para manejar la carga de archivos y los procesos de validaci\u00f3n asociados."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://github.com/yashpatelphd/CVE-2024-29455",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |