Open Robotics Robotic Operating Sytstem 2 (ROS2) and Nav2 humble versions were discovered to contain a NULL pointer dereference via the isCurrent() function at /src/layered_costmap.cpp.
References
| Link | Resource |
|---|---|
| https://github.com/ros-planning/navigation2/issues/3940 | Exploit Issue Tracking |
| https://github.com/ros-planning/navigation2/issues/3958 | Exploit Issue Tracking Patch |
| https://github.com/ros-planning/navigation2/issues/3971 | Exploit Issue Tracking Patch |
| https://github.com/ros-planning/navigation2/issues/3972 | Exploit Issue Tracking Patch |
| https://github.com/ros-planning/navigation2/issues/3940 | Exploit Issue Tracking |
| https://github.com/ros-planning/navigation2/issues/3958 | Exploit Issue Tracking Patch |
| https://github.com/ros-planning/navigation2/issues/3971 | Exploit Issue Tracking Patch |
| https://github.com/ros-planning/navigation2/issues/3972 | Exploit Issue Tracking Patch |
Configurations
History
02 Apr 2025, 20:15
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:openrobotics:robot_operating_system:2:humble:*:*:*:*:*:* cpe:2.3:a:opennav:nav2:*:*:*:*:*:*:*:* |
|
| First Time |
Openrobotics
Opennav Opennav nav2 Openrobotics robot Operating System |
|
| References | () https://github.com/ros-planning/navigation2/issues/3940 - Exploit, Issue Tracking | |
| References | () https://github.com/ros-planning/navigation2/issues/3958 - Exploit, Issue Tracking, Patch | |
| References | () https://github.com/ros-planning/navigation2/issues/3971 - Exploit, Issue Tracking, Patch | |
| References | () https://github.com/ros-planning/navigation2/issues/3972 - Exploit, Issue Tracking, Patch |
Information
Published : 2024-02-20 14:15
Updated : 2025-04-02 20:15
NVD link : CVE-2024-25197
Mitre link : CVE-2024-25197
CVE.ORG link : CVE-2024-25197
JSON object : View
Products Affected
opennav
- nav2
openrobotics
- robot_operating_system
CWE
CWE-476
NULL Pointer Dereference