CVE-2024-30688 Information

Description

An arbitrary file upload vulnerability has been discovered in ROS2 Iron Irwini versions ROS_VERSION 2 and ROS_PYTHON_VERSION 3 allows attackers to execute arbitrary code via a crafted payload to the file upload mechanism of the ROS2 system including the server’s functionality for handling file uploads and the associated validation processes.

Reference

https://github.com/yashpatelphd/CVE-2024-30688