mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 17:21:36 +00:00
24 lines
1.8 KiB
JSON
24 lines
1.8 KiB
JSON
{
|
|
"id": "CVE-2024-30665",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2024-04-08T07:15:09.643",
|
|
"lastModified": "2024-04-17T01:15:08.010",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "An OS command injection vulnerability has been discovered in ROS (Robot Operating System) Melodic Morenia in ROS_VERSION 1 and ROS_PYTHON_VERSION 3. This vulnerability primarily affects the command processing or system call components in ROS, making them susceptible to manipulation by malicious entities. Through this, unauthorized commands can be executed, leading to remote code execution (RCE), data theft, and malicious activities. The affected components include External Command Execution Modules, System Call Handlers, and Interface Scripts. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Se ha descubierto una vulnerabilidad de inyecci\u00f3n de comandos del sistema operativo en ROS (Robot Operating System) Melodic Morenia en ROS_VERSION 1 y ROS_PYTHON_VERSION 3. Esta vulnerabilidad afecta principalmente a los componentes de procesamiento de comandos o llamadas al sistema en ROS, haci\u00e9ndolos susceptibles a la manipulaci\u00f3n por parte de entidades maliciosas. A trav\u00e9s de esto, se pueden ejecutar comandos no autorizados, lo que lleva a la ejecuci\u00f3n remota de c\u00f3digo (RCE), el robo de datos y actividades maliciosas. Los componentes afectados incluyen m\u00f3dulos de ejecuci\u00f3n de comandos externos, controladores de llamadas del sistema y scripts de interfaz."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"references": [
|
|
{
|
|
"url": "https://github.com/yashpatelphd/CVE-2024-30665",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |