Vulnerabilities > CVE-2021-38429 - Insufficient Control of Network Message Volume (Network Amplification) vulnerability in Objectcomputing Opendds

047910
CVSS 6.4 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
objectcomputing
CWE-406

Summary

OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition and information exposure.

Vulnerable Configurations

Part Description Count
Application
Objectcomputing
1