CVE-2025-62600

Source
https://cve.org/CVERecord?id=CVE-2025-62600
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-62600.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-62600
Aliases
  • GHSA-hvm8-mm7f-m6hc
Downstream
Published
2026-02-03T19:11:19.429Z
Modified
2026-07-15T02:16:11.788844463Z
Severity
  • 8.6 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H CVSS Calculator
Summary
eprosima Fast DDS affected by Out-of-Memory in readBinaryPropertySeq via Manipulated DATA Submessage when DDS Security is enabled
Details

eprosima Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory (OOM) condition, resulting in remote termination of Fast-DDS. If the fields of PIDIDENTITYTOKEN or PIDPERMISSIONTOKEN in the DATA Submessage — specifically by tampering with the length field in readBinaryPropertySeq— are modified, an integer overflow occurs, leading to an OOM during the resize operation. This vulnerability is fixed in 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1.

Database specific
{
    "cwe_ids": [
        "CWE-190",
        "CWE-789"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/62xxx/CVE-2025-62600.json",
    "cna_assigner": "GitHub_M"
}
References

Affected packages

Git / github.com/eprosima/fast-dds

Affected ranges

Type
GIT
Repo
https://github.com/eprosima/fast-dds
Events
Database specific
{
    "cpe": [
        "cpe:2.3:a:eprosima:fast_dds:*:*:*:*:*:*:*:*",
        "cpe:2.3:a:eprosima:fast_dds:3.4.0:*:*:*:*:*:*:*"
    ],
    "extracted_events": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.6.11"
        },
        {
            "introduced": "3.0.0"
        },
        {
            "fixed": "3.3.1"
        },
        {
            "introduced": "3.4.0"
        },
        {
            "last_affected": "3.4.0"
        }
    ],
    "source": [
        "CPE_RANGE",
        "CPE_STRING"
    ]
}

Affected versions

2.*
2.0.0-beta
2.0.0-rc
3.*
3.4.0
Other
Discovery-Time_Data_Typing
v1.*
v1.0.0
v1.3.0
v1.4.0
v1.5.0
v1.6.0
v1.7.0
v1.7.1
v1.7.2
v1.8.0
v1.8.0-2
v1.9.0
v1.9.0-beta
v1.9.0-beta-2
v2.*
v2.1.0
v2.10.0-rc1
v2.10.1-rc1
v2.2.0
v2.3.0-1
v2.3.0-api
v3.*
v3.4.0

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-62600.json"