CVE-2024-33903

In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pedestrians or bicycles, in part because the collision sensor function is not exposed to the Blueprint library.

Weakness

The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

Related Attack Patterns

• https://cwe.mitre.org/data/definitions/1.html
• https://cwe.mitre.org/data/definitions/107.html
• https://cwe.mitre.org/data/definitions/127.html
• https://cwe.mitre.org/data/definitions/17.html
• https://cwe.mitre.org/data/definitions/20.html
• https://cwe.mitre.org/data/definitions/22.html
• https://cwe.mitre.org/data/definitions/237.html
• https://cwe.mitre.org/data/definitions/36.html
• https://cwe.mitre.org/data/definitions/477.html
• https://cwe.mitre.org/data/definitions/480.html
• https://cwe.mitre.org/data/definitions/51.html
• https://cwe.mitre.org/data/definitions/57.html
• https://cwe.mitre.org/data/definitions/59.html
• https://cwe.mitre.org/data/definitions/65.html
• https://cwe.mitre.org/data/definitions/668.html
• https://cwe.mitre.org/data/definitions/74.html
• https://cwe.mitre.org/data/definitions/87.html

References

• https://github.com/carla-simulator/carla/blob/60bd026b4822b4edb8a68cc17b9119866f303853/Docs/core_concepts.md
• https://github.com/carla-simulator/carla/issues/7025
• https://github.com/carla-simulator/carla/issues/7394#issuecomment-2058130066
• https://github.com/carla-simulator/carla/pull/7445
• https://github.com/carla-simulator/carla/tags