CVE-2021-37146
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2021-37146
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-37146.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2021-37146
- Related
- Published
- 2021-09-28T13:15:07Z
- Modified
- 2025-01-08T08:15:38.990406Z
- Severity
-
- 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An infinite loop in Open Robotics roscomm XMLRPC server in ROS Melodic through 1.4.11 and ROS Noetic through1.15.11 allows remote attackers to cause a Denial of Service in roscomm via a crafted XMLRPC call.
- References
Affected packages
Debian:11 / ros-ros-comm
Package
- Name
- ros-ros-comm
- Purl
- pkg:deb/debian/ros-ros-comm?arch=source
Debian:12 / ros-ros-comm
Package
- Name
- ros-ros-comm
- Purl
- pkg:deb/debian/ros-ros-comm?arch=source
Debian:13 / ros-ros-comm
Package
- Name
- ros-ros-comm
- Purl
- pkg:deb/debian/ros-ros-comm?arch=source
Git / github.com/ros-gbp/ros_comm-release
Affected ranges
- Type
- GIT
- Repo
- https://github.com/ros-gbp/ros_comm-release
- Events
-
IntroducedLast affected
- Type
- GIT
- Repo
- https://github.com/ros/ros_comm
- Events
-
IntroducedLast affected
Affected versions
1.*
1.15.0
1.15.1
1.15.10
1.15.11
1.15.2
1.15.3
1.15.4
1.15.5
1.15.6
1.15.7
1.15.8
1.15.9
upstream/1.*
upstream/1.12.15
upstream/1.12.16
upstream/1.12.17
upstream/1.14.10
upstream/1.14.5
upstream/1.14.6
upstream/1.14.7
upstream/1.14.8
upstream/1.14.9
upstream/1.15.0
upstream/1.15.1
upstream/1.15.10
upstream/1.15.11
upstream/1.15.2
upstream/1.15.3
upstream/1.15.4
upstream/1.15.5
upstream/1.15.6
upstream/1.15.7
upstream/1.15.8
upstream/1.15.9