CVE-2023-33566

Name of the Vulnerable Software and Affected Versions ROS2 Foxy Fitzroy versions where ROS VERSION is 2 and ROS PYTHON VERSION is 3

Description An unauthorized node injection issue has been identified, which could allow a malicious user to inject malicious ROS2 nodes into the system remotely. These nodes could disrupt the normal operations of the system or cause other potentially harmful behavior.

Recommendations For ROS2 Foxy Fitzroy versions where ROS VERSION is 2 and ROS PYTHON VERSION is 3, consider restricting access to the node injection mechanism to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.