CVE-2023-33567

Name of the Vulnerable Software and Affected Versions ROS2 Foxy Fitzroy versions where ROS VERSION is 2 and ROS PYTHON VERSION is 3

Description An unauthorized access issue has been discovered, potentially allowing a malicious user to gain unauthorized access to multiple ROS2 nodes remotely. This could result in compromised system integrity, the execution of arbitrary commands, and disclosure of sensitive information.

Recommendations For ROS2 Foxy Fitzroy versions where ROS VERSION is 2 and ROS PYTHON VERSION is 3, consider restricting access to ROS2 nodes to minimize the risk of exploitation. As a temporary workaround, limit the use of ROS2 nodes until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.