Vulnerabilities > CVE-2025-1252 - Out-of-bounds Write vulnerability in RTI Connext Professional

CVSS 7.1 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

rti

CWE-787

NVD

Published: 2025-05-08

Updated: 2025-06-05

Summary

Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.4.0 before 7.5.0, from 7.0.0 before 7.3.0.7, from 4.4 before 6.1.2.23.

Vulnerable Configurations

Part	Description	Count
Application	Rti RTI Connext Professional 4.4 RTI Connext Professional 4.5 RTI Connext Professional 4.5D.Rev41 RTI Connext Professional 5.0.0 RTI Connext Professional 5.2.0 RTI Connext Professional 5.3.0 RTI Connext Professional 5.3.1.40 RTI Connext Professional 5.3.1.41 RTI Connext Professional 5.3.1.44 RTI Connext Professional 5.3.1.45 RTI Connext Professional 6.0.0 RTI Connext Professional 6.0.1.25 RTI Connext Professional 6.0.1.35 RTI Connext Professional 6.0.1.40 RTI Connext Professional 6.1.0 RTI Connext Professional 6.1.1 RTI Connext Professional 6.1.1.2 RTI Connext Professional 6.1.2.17 RTI Connext Professional 6.1.2.19 RTI Connext Professional 6.1.2.21 RTI Connext Professional 7.0.0 RTI Connext Professional 7.1.0 RTI Connext Professional 7.2.0 RTI Connext Professional 7.3.0 RTI Connext Professional 7.3.0.2 RTI Connext Professional 7.3.0.5 RTI Connext Professional 7.4.0	27

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.rti.com/vulnerabilities/#cve-2025-1252