CVE-2021-38435

MEDIUM

RTI Connext DDS <6.1.0 - Buffer Overflow

Title source: llm
STIX 2.1

Description

RTI Connext DDS Professional and Connext DDS Secure Versions 4.2x to 6.1.0 not correctly calculate the size when allocating the buffer, which may result in a buffer overflow.

References (2)

Core 2
Core References
Permissions Required, Vendor Advisory
https://support.rti.com/s/login/?ec=302&startURL=%2Fs%2F
Third Party Advisory, US Government Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-21-315-02

Scores

CVSS v3 6.6
EPSS 0.0135
EPSS Percentile 67.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-131
Status published
Products (2)
rti/connext_professional 4.2 - 6.1.0
rti/connext_secure 4.2 - 6.1.0
Published May 05, 2022
Tracked Since Feb 18, 2026