CVE-2024-29455 Information

Description

An arbitrary file upload vulnerability has been discovered in ROS2 Humble Hawksbill in ROS_VERSION 2 and ROS_PYTHON_VERSION 3 allows attackers to execute arbitrary code cause a denial of service (DoS) and obtain sensitive information via crafted payload to the file upload mechanism of the ROS2 system including the server’s functionality for handling file uploads and the associated validation processes.

Reference

https://github.com/yashpatelphd/CVE-2024-29455