CVE-2024-30963

Name of the Vulnerable Software and Affected Versions Open Robotics Robotic Operating System 2 (ROS2) navigation2- ROS2-humble and navigation 2-humble

Description A Buffer Overflow issue allows a local attacker to execute arbitrary code via a crafted script. This issue exists in the navigation2 component of ROS2, specifically in the humble version.

Recommendations For Open Robotics Robotic Operating System 2 (ROS2) navigation2- ROS2-humble and navigation 2-humble, consider disabling the navigation2 component until a patch is available to prevent exploitation. Restrict access to the navigation2 module to minimize the risk of arbitrary code execution. Avoid using crafted scripts that could trigger the Buffer Overflow issue until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.