Vulnerabilities > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2024-12-06	CVE-2024-38927	Use After Free vulnerability in Openrobotics Robot Operating System 2 Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble versions were discovered to contain a use-after-free via the nav2_amcl process. network low complexity openrobotics CWE-416 critical	9.8
2024-12-06	CVE-2024-41644	Improper Preservation of Permissions vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via the dyn_param_handler_ component. network low complexity openrobotics CWE-281 critical	9.8
2024-12-06	CVE-2024-41645	Improper Preservation of Permissions vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2__amcl. network low complexity openrobotics CWE-281 critical	9.8
2024-12-06	CVE-2024-41646	Improper Preservation of Permissions vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_dwb_controller. network low complexity openrobotics CWE-281 critical	9.8
2024-12-06	CVE-2024-41647	Unspecified vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_mppi_controller. network low complexity openrobotics critical	9.8
2024-12-06	CVE-2024-41648	Improper Preservation of Permissions vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_regulated_pure_pursuit_controller. network low complexity openrobotics CWE-281 critical	9.8
2024-12-06	CVE-2024-41649	Improper Preservation of Permissions vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the executor_thread_. network low complexity openrobotics CWE-281 critical	9.8
2024-12-06	CVE-2024-41650	Improper Preservation of Permissions vulnerability in Openrobotics Robot Operating System 2 Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_costmap_2d. network low complexity openrobotics CWE-281 critical	9.8
2024-12-06	CVE-2024-44852	Release of Invalid Pointer or Reference vulnerability in Openrobotics Robot Operating System 2 Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble was discovered to contain a segmentation violation via the component theta_star::ThetaStar::isUnsafeToPlan(). network low complexity openrobotics CWE-763 critical	9.8
2024-12-06	CVE-2024-46874	Unspecified vulnerability in Ruijienetworks Reyee OS Ruijie Reyee OS versions 2.206.x up to but not including 2.320.x could allow MQTT clients connecting with device credentials to send messages to some topics. network low complexity ruijienetworks critical	9.9

Vulnerabilities > Critical {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Critical"}]}

Vulnerabilities > Critical