Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The ntpd_driver component before 1.3.0 and 2.x before 2.2.0 for Robot Operating System (ROS) allows attackers, who control the source code of a different node in the same ROS application, to change a robot's behavior. This occurs because a topic name depends on the attacker-controlled time_ref_topic parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ntpd_driver 代码注入漏洞
Vulnerability Description
ntpd_driver是Vladimir Ermakov个人开发者的一个库。将 ROS TimeReference 消息转换为 ntpd shm 格式。 ntpd_driver 1.3.0之前版本、2.x系列2.2.0之前版本存在安全漏洞,该漏洞源于topic nam取决于攻击者控制的 time_ref_topic 参数,攻击者利用该漏洞可以控制同一 ROS 应用程序中不同节点的源代码,从而改变机器人的行为。
CVSS Information
N/A
Vulnerability Type
N/A