Vulnerabilities > Objectcomputing > Opendds
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-11 | CVE-2023-52427 | Allocation of Resources Without Limits or Throttling vulnerability in Objectcomputing Opendds 3.23.1 In OpenDDS through 3.27, there is a segmentation fault for a DataWriter with a large value of resource_limits.max_samples. | 7.5 |
| 2023-07-21 | CVE-2023-37915 | Unspecified vulnerability in Objectcomputing Opendds 3.23.1 OpenDDS is an open source C++ implementation of the Object Management Group (OMG) Data Distribution Service (DDS). | 7.5 |
| 2023-02-03 | CVE-2023-23932 | Unspecified vulnerability in Objectcomputing Opendds OpenDDS is an open source C++ implementation of the Object Management Group (OMG) Data Distribution Service (DDS). | 7.5 |
| 2022-05-05 | CVE-2021-38429 | Insufficient Control of Network Message Volume (Network Amplification) vulnerability in Objectcomputing Opendds OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition and information exposure. | 6.4 |
| 2022-05-05 | CVE-2021-38445 | Improper Handling of Length Parameter Inconsistency vulnerability in Objectcomputing Opendds OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code. | 7.5 |
| 2022-05-05 | CVE-2021-38447 | Asymmetric Resource Consumption (Amplification) vulnerability in Objectcomputing Opendds OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition. | 4.3 |