CVE-2024-30258

FastDDS crash when publisher send malformed packet

Severity Score

8.2

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

Track*

*SSVC

Descriptions

FastDDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed `RTPS` packet, the subscriber crashes when creating `pthread`. This can remotely crash any Fast-DDS process, potentially leading to a DOS attack. Versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8 contain a patch for the issue.

FastDDS es una implementación en C++ del estándar DDS (Servicio de distribución de datos) de OMG (Object Management Group). Antes de las versiones 2.14.1, 2.13.5, 2.10.4 y 2.6.8, cuando un editor entrega un paquete "RTPS" con formato incorrecto, el suscriptor falla al crear "pthread". Esto puede bloquear de forma remota cualquier proceso Fast-DDS, lo que podría provocar un ataque de DOS. Las versiones 2.14.1, 2.13.5, 2.10.4 y 2.6.8 contienen un parche para el problema.

*Credits: N/A

CVSS Scores

GitHubv3.1 8.2

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

Low

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:Track*

Exploitation

Poc

Automatable

Tech. Impact

Partial

* Organization's Worst-case Scenario

Timeline

2024-03-26 CVE Reserved
2024-05-13 CVE Published
2024-05-14 EPSS Updated
2024-08-02 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation

CAPEC

References (3)

URL	Tag	Source
https://drive.google.com/file/d/19W5UC52hPnAqVq_boZWO45d1TJ4WoCSh/view?usp=sharing	X_refsource_misc
https://github.com/eProsima/Fast-DDS/commit/65236f93e9c4ea3ff9a49fba4dfd9e43eb94037b	X_refsource_misc
https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-53xw-465j-rxfh	X_refsource_confirm

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
EProsima Search vendor "EProsima"		Fast-DDS Search vendor "EProsima" for product "Fast-DDS"				2.14.0 Search vendor "EProsima" for product "Fast-DDS" and version "2.14.0"		en		Affected
EProsima Search vendor "EProsima"		Fast-DDS Search vendor "EProsima" for product "Fast-DDS"				>= 2.13.0 < 2.13.5 Search vendor "EProsima" for product "Fast-DDS" and version " >= 2.13.0 < 2.13.5"		en		Affected
EProsima Search vendor "EProsima"		Fast-DDS Search vendor "EProsima" for product "Fast-DDS"				>= 2.10.0 < 2.10.4 Search vendor "EProsima" for product "Fast-DDS" and version " >= 2.10.0 < 2.10.4"		en		Affected
EProsima Search vendor "EProsima"		Fast-DDS Search vendor "EProsima" for product "Fast-DDS"				< 2.6.8 Search vendor "EProsima" for product "Fast-DDS" and version " < 2.6.8"		en		Affected