Home

Description

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow'), Heap-based Buffer Overflow, Integer Overflow or Wraparound vulnerability in RTI Connext Professional (Security Plugins) allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.0.0 before 7.3.0.2, from 6.1.0 before 6.1.2.17.

PUBLISHED Reserved 2024-11-05 | Published 2024-12-13 | Updated 2025-12-02 | Assigner RTI




MEDIUM: 6.9CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N

Security Extensions Enabled

Problem types

CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE-122 Heap-based Buffer Overflow

CWE-190 Integer Overflow or Wraparound

Product status

Default status
unaffected

7.0.0 (custom) before 7.3.0.2
affected

6.1.0 (custom) before 6.1.2.17
affected

References

www.rti.com/vulnerabilities/

cve.org (CVE-2024-52059)

nvd.nist.gov (CVE-2024-52059)

Download JSON