Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Connext Professional — Vulnerabilities & Security Advisories 21

All 21 CVE vulnerabilities found in Connext Professional, with AI-generated Chinese analysis, references, and POCs.

Vendor: RTI

CVE IDTitleCVSSSeverityPublished
CVE-2026-4374 Improper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional (Routing Service,Observability Collector,Recording Service,Queueing Service,Cloud Discovery Service) allows Serialized Data External Linking, Data Serializat... CWE-611 9.8AICriticalAI2026-04-01
CVE-2026-2394 Buffer Over-read vulnerability in RTI Connext Professional (Core Libraries) allows Overread Buffers. CWE-126 7.5AIHighAI2026-04-01
CVE-2025-10450 Exposure of Private Personal Information to an Unauthorized Actor vulnerability in RTI Connext Professional (Core Libraries) allows Sniffing Network Traffic. CWE-359 5.3AIMediumAI2025-12-16
CVE-2025-8410 Use After Free vulnerability in RTI Connext Professional (Security Plugins) allows File Manipulation. CWE-416 9.8AICriticalAI2025-09-23
CVE-2025-4993 Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipulation. CWE-822 9.1AICriticalAI2025-09-23
CVE-2025-4582 Buffer Over-read, Off-by-one Error vulnerability in RTI Connext Professional (Core Libraries) allows File Manipulation, Overread Buffers. CWE-126 8.8AIHighAI2025-09-23
CVE-2025-1255 Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipulation. CWE-822 9.1AICriticalAI2025-09-23
CVE-2025-1254 Out-of-bounds Read, Out-of-bounds Write vulnerability in RTI Connext Professional (Recording Service) allows Overflow Buffers, Overread Buffers. CWE-125 9.8AICriticalAI2025-05-08
CVE-2025-1253 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Stack-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags. CWE-120 9.1AICriticalAI2025-05-08
CVE-2025-1252 Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags. CWE-122 9.1AICriticalAI2025-05-08
CVE-2024-52066 Potential stack corruption in Routing Service when using a malicious XML configuration document CWE-120 9.1 -2024-12-13
CVE-2024-52065 Potential stack buffer write overflow in Persistence Service while parsing malicious environment variable on non-Windows systems CWE-120 8.4 -2024-12-13
CVE-2024-52064 Potential stack buffer write overflow in Connext applications while parsing malicious license file CWE-120 9.1 -2024-12-13
CVE-2024-52063 Potential stack buffer write overflow in Connext applications while parsing malicious XML types document CWE-120 9.8 -2024-12-13
CVE-2024-52062 Potential stack buffer write overflow in Connext applications while parsing malicious XML types document CWE-120 9.1 -2024-12-13
CVE-2024-52061 Potential stack buffer overflow when parsing an XML type CWE-120 9.8 -2024-12-13
CVE-2024-52060 Potential stack overflow when using XML configuration file referencing environment variables CWE-120 9.8 -2024-12-13
CVE-2024-52059 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Heap-based Buffer Overflow, Integer Overflow or Wraparound vulnerability in RTI Connext Professional (Security Plugins) allows Overflow Variables and Tags. CWE-120 9.1 -2024-12-13
CVE-2024-52058 Potential arbitrary command execution in System Designer while parsing malicious HTTP/REST requests CWE-78 8.8 -2024-12-13
CVE-2024-52057 Potential arbitrary SQL query execution in Queuing Service while parsing malicious remote commands or configuration files CWE-89 9.8 -2024-12-13
CVE-2021-38487 Potential Network Amplification and Information Exposure in RTI Connext Professional and Connext Micro CWE-406 8.2 High2022-05-05

All 21 known CVE vulnerabilities affecting Connext Professional with full Chinese analysis, references, and POCs where available.