CVE-2024-30690 | Vulnerability Database

NVD	https://nvd.nist.gov/vuln/detail/CVE-2024-30690
CWE	https://cwe.mitre.org/data/definitions/.html

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-30690

CWE

https://cwe.mitre.org/data/definitions/.html

An unauthorized node injection vulnerability has been identified in ROS2 Galactic Geochelone versions where ROS_VERSION is 2 and ROS_PYTHON_VERSION is 3, allows remote attackers to escalate privileges. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability.

References

http://www.openwall.com/lists/oss-security/2024/04/23/2
http://www.openwall.com/lists/oss-security/2024/04/23/3
http://www.openwall.com/lists/oss-security/2024/04/23/4
http://www.openwall.com/lists/oss-security/2024/04/23/5
https://github.com/yashpatelphd/CVE-2024-30690