Home

Description

Buffer Over-read, Off-by-one Error vulnerability in RTI Connext Professional (Core Libraries) allows File Manipulation.This issue affects Connext Professional: from 7.4.0 before 7.6.0, from 7.0.0 before 7.3.0.8, from 6.1.0 before 6.1.2.26, from 6.0.0 before 6.0.*, from 5.3.0 before 5.3.*, from 4.4a before 5.2.*.

PUBLISHED Reserved 2025-05-12 | Published 2025-09-23 | Updated 2025-09-23 | Assigner RTI




MEDIUM: 4.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

MEDIUM: 4.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

Security Extensions Enabled

Problem types

CWE-126 Buffer Over-read

CWE-193 Off-by-one Error

Product status

Default status
unaffected

7.4.0 (custom) before 7.6.0
affected

7.0.0 (custom) before 7.3.0.8
affected

6.1.0 (custom) before 6.1.2.26
affected

6.0.0 (custom) before 6.0.*
affected

5.3.0 (custom) before 5.3.*
affected

4.4a (custom) before 5.2.*
affected

References

www.rti.com/vulnerabilities/

cve.org (CVE-2025-4582)

nvd.nist.gov (CVE-2025-4582)

Download JSON