OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:HObjectcomputing Opendds
APPObjectcomputing< 3.18.1
Related vulnerabilities
An integer overflow in the RTPS protocol implementation of OpenDDS DDS before v3.33.0 allows attackers to caus...
In OpenDDS through 3.27, there is a segmentation fault for a DataWriter with a large value of resource_limits....
OpenDDS is an open source C++ implementation of the Object Management Group (OMG) Data Distribution Service (D...
OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood...
An issue was discovered in OpenDDS commit b1c534032bb62ad4ae32609778de6b8d6c823a66, allows a local attacker to...