CVE-2023-23932

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2023-23932

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-23932.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2023-23932

Aliases

GHSA-8wvq-25f5-f8h4

Published

2023-02-03T20:08:31.160Z

Modified

2025-11-29T14:00:10.242323Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L CVSS Calculator

Summary

Specially crafted RTPS message may cause an OpenDDS application to crash

Details

OpenDDS is an open source C++ implementation of the Object Management Group (OMG) Data Distribution Service (DDS). OpenDDS applications that are exposed to untrusted RTPS network traffic may crash when parsing badly-formed input. This issue has been patched in version 3.23.1.

Database specific

{
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-248"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2023/23xxx/CVE-2023-23932.json"
}

References

Affected packages

Git / github.com/opendds/opendds

Affected ranges

Type: GIT
Repo: https://github.com/opendds/opendds
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

e5d2e5c960bafb199b7c9bc4a837918115855b33

Affected versions

DDS-3.*

DDS-3.10

DDS-3.11

DDS-3.12

DDS-3.13

DDS-3.13.1

DDS-3.14

DDS-3.14-pre1

DDS-3.14-pre2

DDS-3.14-pre3

DDS-3.14-pre4

DDS-3.14-pre5

DDS-3.15

DDS-3.15-pre1

DDS-3.15-pre10

DDS-3.15-pre11

DDS-3.15-pre12

DDS-3.15-pre13

DDS-3.15-pre14

DDS-3.15-pre15

DDS-3.15-pre16

DDS-3.15-pre17

DDS-3.15-pre18

DDS-3.15-pre19

DDS-3.15-pre2

DDS-3.15-pre20

DDS-3.15-pre21

DDS-3.15-pre22

DDS-3.15-pre23

DDS-3.15-pre24

DDS-3.15-pre3

DDS-3.15-pre4

DDS-3.15-pre5

DDS-3.15-pre6

DDS-3.15-pre7

DDS-3.15-pre8

DDS-3.15-pre9

DDS-3.16

DDS-3.16-pre1

DDS-3.16-pre10

DDS-3.16-pre11

DDS-3.16-pre12

DDS-3.16-pre13

DDS-3.16-pre14

DDS-3.16-pre15

DDS-3.16-pre15a

DDS-3.16-pre16

DDS-3.16-pre17

DDS-3.16-pre18

DDS-3.16-pre2

DDS-3.16-pre20

DDS-3.16-pre21

DDS-3.16-pre3

DDS-3.16-pre4

DDS-3.16-pre5

DDS-3.16-pre6

DDS-3.16-pre7

DDS-3.16-pre8

DDS-3.16-pre9

DDS-3.17

DDS-3.17-pre1

DDS-3.17-pre10

DDS-3.17-pre13

DDS-3.17-pre14

DDS-3.17-pre15

DDS-3.17-pre16

DDS-3.17-pre17

DDS-3.17-pre17f

DDS-3.17-pre17g

DDS-3.17-pre18

DDS-3.17-pre19

DDS-3.17-pre2

DDS-3.17-pre20

DDS-3.17-pre21

DDS-3.17-pre22

DDS-3.17-pre23

DDS-3.17-pre24

DDS-3.17-pre3

DDS-3.17-pre4

DDS-3.17-pre5

DDS-3.17-pre6

DDS-3.17-pre6z

DDS-3.17-pre7

DDS-3.17-pre7a

DDS-3.17-pre7b

DDS-3.17-pre8

DDS-3.17-pre8a

DDS-3.17-pre8b

DDS-3.17-pre8c

DDS-3.17-pre8d

DDS-3.17-pre9

DDS-3.17-pre9a

DDS-3.18

DDS-3.18-pre1

DDS-3.18-pre2

DDS-3.18-pre3

DDS-3.18-pre4

DDS-3.18-pre6

DDS-3.18-pre8

DDS-3.19

DDS-3.20

DDS-3.21

DDS-3.22

DDS-3.23

DDS-3.6

DDS-3.7

DDS-3.8

DDS-3.9

Other

SBIR-FunctionalPrototype

green-35

green-36

vxworks-pkgs-2210

xtypes-20200512

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-23932.json"