CVE-2022-48217

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2022-48217
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-48217.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-48217
Published
2023-01-04T19:15:09.517Z
Modified
2026-03-14T11:56:14.966735Z
Severity
  • 8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

The tfremappernode component 1.1.1 for Robot Operating System (ROS) allows attackers, who control the source code of a different node in the same ROS application, to change a robot's behavior. This occurs because a topic name depends on the attacker-controlled oldtftopicname and/or newtftopicname parameter. NOTE: the vendor's position is "it is the responsibility of the programmer to make sure that only known and required parameters are set and unexpected parameters are not."

References

Affected packages

Git / github.com/tradr-project/tf_remapper_cpp

Affected ranges

Type
GIT
Repo
https://github.com/tradr-project/tf_remapper_cpp
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
ff9ede0b9c4b40bf0a025dead691e0406532e928
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.1.1"
        }
    ]
}

Affected versions

1.*
1.1.0
1.1.1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-48217.json"