PT-2020-12038 · Ros · Actionlib

Alias Robotics

Published

2020-08-20

Updated

2021-12-20

CVE-2020-10289

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions actionlib (affected versions not specified)

Description The issue is caused by an unsafe parsing of YAML values in the ROS core package of actionlib, allowing the instantiation of arbitrary objects. This occurs when an action message is processed to be sent, enabling the creation of Python objects. An attacker with local or remote access can exploit this flaw to execute arbitrary code in Python form on the ROS Master.

Recommendations Consider using yaml.safe load() instead of the unsafe load method to prevent the instantiation of arbitrary objects. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Deserialization of Untrusted Data

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-502CWE-20

Related Identifiers

CVE-2020-10289

DLA-2357-1

Affected Products

Actionlib

PT-2020-12038 · Ros · Actionlib

CVE-2020-10289

Weakness Enumeration

Related Identifiers

Affected Products

References · 9