Vulnerabilities > RTI
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-08 | CVE-2025-1252 | Out-of-bounds Write vulnerability in RTI Connext Professional Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.4.0 before 7.5.0, from 7.0.0 before 7.3.0.7, from 4.4 before 6.1.2.23. | 7.1 |
| 2025-05-08 | CVE-2025-1253 | Classic Buffer Overflow vulnerability in RTI Connext Professional Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.4.0 before 7.5.0, from 7.0.0 before 7.3.0.7, from 4.5 before 6.1.2.23. | 7.8 |
| 2025-05-08 | CVE-2025-1254 | Out-of-bounds Write vulnerability in RTI Connext Professional Out-of-bounds Read, Out-of-bounds Write vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers, Overflow Buffers.This issue affects Connext Professional: from 7.4.0 before 7.5.0, from 7.0.0 before 7.3.0.7, from 6.0.0 before 6.1.2.23. | 7.4 |
| 2022-05-05 | CVE-2021-38427 | Out-of-bounds Write vulnerability in RTI Connext Professional and Connext Secure RTI Connext DDS Professional and Connext DDS Secure Versions 4.2.x to 6.1.0 are vulnerable to a stack-based buffer overflow, which may allow a local attacker to execute arbitrary code. | 7.8 |
| 2022-05-05 | CVE-2021-38433 | Stack-based Buffer Overflow vulnerability in RTI Connext Professional and Connext Secure RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6.1.0 vulnerable to a stack-based buffer overflow, which may allow a local attacker to execute arbitrary code. | 7.8 |
| 2022-05-05 | CVE-2021-38435 | Incorrect Calculation of Buffer Size vulnerability in RTI Connext Professional and Connext Secure RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6.1.0 not correctly calculate the size when allocating the buffer, which may result in a buffer overflow. | 9.8 |
| 2022-05-05 | CVE-2021-38487 | Insufficient Control of Network Message Volume (Network Amplification) vulnerability in RTI products RTI Connext DDS Professional, Connext DDS Secure versions 4.2x to 6.1.0, and Connext DDS Micro versions 2.4 and later are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic. | 9.1 |