HIGH🇵🇱 Wersja polska

CVE-2022-48217

CVSS 8.1v3.1pub. 2023-01-04upd. 2024-11-21

The tf_remapper_node component 1.1.1 for Robot Operating System (ROS) allows attackers, who control the source code of a different node in the same ROS application, to change a robot's behavior. This occurs because a topic name depends on the attacker-controlled old_tf_topic_name and/or new_tf_topic_name parameter. NOTE: the vendor's position is "it is the responsibility of the programmer to make sure that only known and required parameters are set and unexpected parameters are not."

CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Tradr Project Tf Remapper

    APP
    Tradr-Project
    1.1.1
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References