CVE-2024-37862 Information

Description

Buffer Overflow vulnerability in Open Robotic Robotic Operating System 2 ROS2 navigation2- ROS2-humble&& navigation2-humble allows a local attacker to execute arbitrary code via a crafted .yaml file to the nav2_planner process.

Reference

https://github.com/GoesM/ROS-CVE-CNVDs https://github.com/ros-navigation/navigation2/issues/4005 https://github.com/ros-navigation/navigation2/issues/4062