RTI Connext Professional versions 4.1 to 6.1.0, and Connext Micro versions 2.4 and later are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic. This may result in a denial-of-service condition and information exposure.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XRti Connext Dds Micro
APPRti≥ 2.4Rti Connext Professional
APPRti4.2 – 6.1.0 (bez)Rti Connext Secure
APPRti4.2 – 6.1.0 (bez)
Related vulnerabilities
SQL Injection w RTI Connext Professional (Queuing Service)
Improper Restriction of XML External Entity Reference vulnerability in Connext Professional (Core Libraries) a...
Improper Restriction of XML External Entity Reference vulnerability in RTI Connext Professional (Routing Servi...
Exposure of Private Personal Information to an Unauthorized Actor vulnerability in RTI Connext Professional (C...
Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipu...