CVE-2024-41646 Information

Description

Insecure Permissions vulnerability in Open Robotics Robotic Operating System 2 ROS2 navigation2 v.humble allows an attacker to execute arbitrary code via a crafted script to the nav2_dwb_controller.

Reference

https://github.com/GoesM/ROS-CVE-CNVDs https://github.com/ros-navigation/navigation2/issues/4437 https://github.com/ros-navigation/navigation2/pull/4463