Home

Description

Buffer Over-read, Off-by-one Error vulnerability in RTI Connext Professional (Core Libraries) allows File Manipulation, Overread Buffers.This issue affects Connext Professional: from 7.4.0 before 7.6.0, from 7.0.0 before 7.3.0.8, from 6.1.0 before 6.1.2.26, from 6.0.0 before 6.0.1.43, from 5.3.0 before 5.3.*, from 4.4a before 5.2.*.

PUBLISHED Reserved 2025-05-12 | Published 2025-09-23 | Updated 2026-04-01 | Assigner RTI




MEDIUM: 4.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

MEDIUM: 4.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

Security Extensions Enabled

Problem types

CWE-126 Buffer Over-read

CWE-193 Off-by-one Error

Product status

Default status
unaffected

7.4.0 (custom) before 7.6.0
affected

7.0.0 (custom) before 7.3.0.8
affected

6.1.0 (custom) before 6.1.2.26
affected

6.0.0 (custom) before 6.0.1.43
affected

5.3.0 (custom) before 5.3.*
affected

4.4a (custom) before 5.2.*
affected

References

www.rti.com/vulnerabilities/

cve.org (CVE-2025-4582)

nvd.nist.gov (CVE-2025-4582)

Download JSON