Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Eclipse CycloneDDS Write-what-where Condition
Vulnerability Description
Eclipse CycloneDDS versions prior to 0.8.0 are vulnerable to a write-what-where condition, which may allow an attacker to write arbitrary values in the XML parser.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
Vulnerability Type
任意地址可写任意内容条件
Vulnerability Title
Eclipse Cyclone DDS 代码问题漏洞
Vulnerability Description
Eclipse Cyclone DDS是Eclipse基金会的一个非常高性能和健壮的开源 DDS 实现。 Eclipse Cyclone DDS 中存在代码问题漏洞,该漏洞源于产品未能正确处理write-what-where逻辑。攻击者可通过该漏洞在XML解析器中写入任意值。以下产品及版本受到影响:Eclipse CycloneDDS 0.8.0 之前版本。
CVSS Information
N/A
Vulnerability Type
N/A