CNNVD-202509-3686 Information
CNNVD ID
CNNVD-202509-3686
Related CVE
- CNNVD Published: 2025-09-23
Description (Chinese)
RTI Connext Professional是美国RTI公司的一个专为满足工业物联网 (IIoT) 的苛刻要求而设计的连接平台。 RTI Connext Professional 7.6.0之前版本、7.3.0.10之前版本、6.1.2.27之前版本、6.0之前版本、5.3之前版本和5.2之前版本存在安全漏洞,该漏洞源于不可信指针取消引用,可能导致指针操作。
Description (English)
RTI Connexional is a connecting platform designed by the United States company RTI to meet the demanding requirements of the Industrial Networking (IIOT). There is a security loophole in the previous version of RTI Connext Environmental 7.6.0, the previous version of 7.3.0.10, the pre-version of 6.1.2.2, the pre-version of 6.0, the pre-version of 5.3 and the pre-version of 5.2, which stems from the fact that the untrustworthy pointer has been de-referenced and may lead to the pointer operation.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
rubygems
Published
2025-09-23
Last Modified
2026-02-24
References
https://www.rti.com/vulnerabilities/#cve-2025-4993