CVE-2025-62600 in Fast-DDSinfo

Zusammenfassung

von MITRE • 03.02.2026

Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group ). Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory (OOM) condition, resulting in remote termination of Fast-DDS. If t he fields of PID_IDENTITY_TOKEN or PID_PERMISSION_TOKEN in the DATA Submessage — specifically by tampering with the length field in readBinaryPropertySeq — are modified, an integer overflow occurs, leading to an OOM during the resize operation. Versions 3.4.1, 3.3.1, and 2.6.11 patch the issue.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

GitHub M

Reservieren

16.10.2025

Veröffentlichung

03.02.2026

Moderieren

akzeptiert

Eintrag

VDB-344077

CPE

bereit

CWE

CWE-190 (bestätigt)

CVSS

7.5 (NVD)

EPSS

0.00025

KEV

nein

Aktivitäten

very low

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-62600
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-62600
CVE Details	https://www.cvedetails.com/cve/CVE-2025-62600/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!