NVD

Vulnerability Change Records for CVE-2023-33566

Action	Type	Old Value	New Value

Action	Type	Old Value	New Value
Removed	CPE Configuration	OR cpe:2.3:a:openrobotics:robot_operating_system:2:foxy::::::*
Removed	CVSS V3.1	NIST AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Removed	CWE	NIST CWE-74
Changed	Description	An unauthorized node injection vulnerability has been identified in ROS2 Foxy Fitzroy versions where ROS_VERSION is 2 and ROS_PYTHON_VERSION is 3. This vulnerability could allow a malicious user to inject malicious ROS2 nodes into the system remotely. Once injected, these nodes could disrupt the normal operations of the system or cause other potentially harmful behavior. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability.	Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that there was not reasonable evidence to determine the existence of a vulnerability.
Removed	Reference	MITRE http://www.openwall.com/lists/oss-security/2024/04/23/2
Removed	Reference	MITRE http://www.openwall.com/lists/oss-security/2024/04/23/3
Removed	Reference	MITRE http://www.openwall.com/lists/oss-security/2024/04/23/4
Removed	Reference	MITRE http://www.openwall.com/lists/oss-security/2024/04/23/5
Removed	Reference	MITRE https://github.com/16yashpatel/CVE-2023-33566
Removed	Tag	MITRE disputed