CVE-2024-39780
Use of unsafe yaml load in dynparam
Severity Score
8.4
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track*
*SSVC
Descriptions
A YAML deserialization vulnerability was found in the Robot Operating System (ROS) 'dynparam', a command-line tool for getting, setting, and deleting parameters of a dynamically configurable node, affecting ROS distributions Noetic and earlier. The issue is caused by the use of the yaml.load() function in the 'set' and 'get' verbs, and allows for the creation of arbitrary Python objects. Through this flaw, a local or remote user can craft and execute arbitrary Python code. This issue has now been fixed for ROS Noetic via commit 3d93ac13603438323d7e9fa74e879e45c5fe2e8e.
*Credits:
Florencia Cabral Berenfus, Ubuntu Robotics Team
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track*
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-08-08 CVE Reserved
- 2025-04-02 CVE Published
- 2025-04-02 CVE Updated
- 2025-04-02 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
- CWE-502: Deserialization of Untrusted Data
CAPEC
- CAPEC-586: Object Injection
References (1)
| URL | Tag | Source |
|---|---|---|
| https://github.com/ros/dynamic_reconfigure/pull/202 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Open Source Robotics Foundation Search vendor "Open Source Robotics Foundation" | Robot Operating System (ROS) Search vendor "Open Source Robotics Foundation" for product "Robot Operating System (ROS)" | <= Search vendor "Open Source Robotics Foundation" for product "Robot Operating System (ROS)" and version " <= " | en |
Affected
| ||||||
| Open Source Robotics Foundation Search vendor "Open Source Robotics Foundation" | Robot Operating System (ROS) Search vendor "Open Source Robotics Foundation" for product "Robot Operating System (ROS)" | <= Search vendor "Open Source Robotics Foundation" for product "Robot Operating System (ROS)" and version " <= " | en |
Affected
| ||||||
| Open Source Robotics Foundation Search vendor "Open Source Robotics Foundation" | Robot Operating System (ROS) Search vendor "Open Source Robotics Foundation" for product "Robot Operating System (ROS)" | <= Search vendor "Open Source Robotics Foundation" for product "Robot Operating System (ROS)" and version " <= " | en |
Affected
| ||||||