Vulnerability — CVE-2024-38922

CVE-2024-38922

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2024-38922
Description:: Open Robotics Robotic Operating System 2 (ROS2) and Nav2 humble version was discovered to contain a heap overflow in the nav2_amcl process. This vulnerability is triggered via sending a crafted message to the component /initialpose.
Last updated date:: 12/17/2024

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/17/2024
Reference url to background: https://github.com/open-navigation/navigation2/issues/4307

Type:: exploit
Confidence:: HIGH
Date of publishing:: 12/17/2024
Reference url to background: https://github.com/ros-navigation/navigation2/issues/4294