CNNVD-202509-3668 Information

CNNVD ID

CNNVD-202509-3668

Related CVE

CVE-2025-1255

• CNNVD Published: 2025-09-23

Description (Chinese)

RTI Connext Professional是美国RTI公司的一个专为满足工业物联网 (IIoT) 的苛刻要求而设计的连接平台。 RTI Connext Professional 7.4.0版本至7.6.0之前版本和7.2.0版本至7.3.0.9版本存在安全漏洞，该漏洞源于不可信指针取消引用，可能导致指针操作。

Description (English)

RTI Connexional is a connecting platform designed by the United States company RTI to meet the demanding requirements of the Industrial Networking (IIOT). There is a security loophole between RTI Connext Environmental Version 7.4.0 and previous versions 7.2.0 and between version 7.2.0 and version 7.3.0.9, which stems from the untrustworthy pointer’s cancellation of references, which may lead to pointer operations.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

rubygems

Published

2025-09-23

Last Modified

2026-02-24

References

https://www.rti.com/vulnerabilities/#cve-2025-1255

Patch

https://community.rti.com/static/documentation/connext-dds/current/doc/vulnerabilities/#cve-2025-8410