CVE-2023-51202

Name of the Vulnerable Software and Affected Versions ROS2 (Robot Operating System 2) versions Foxy Fitzroy

Description The issue is an OS command injection vulnerability in command processing or system call components. This allows attackers to run arbitrary commands. The ROS VERSION is 2 and ROS PYTHON VERSION is 3.

Recommendations For ROS2 (Robot Operating System 2) versions Foxy Fitzroy, consider restricting access to system call components to minimize the risk of exploitation until a patch is available. As a temporary workaround, avoid using the vulnerable command processing components. At the moment, there is no information about a newer version that contains a fix for this vulnerability.