CVE-2025-62602

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2025-62602
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-62602.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-62602
Downstream
Published
2026-02-03T19:20:55.963Z
Modified
2026-02-24T16:10:06.538030Z
Severity
  • 1.7 (Low) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U CVSS Calculator
Summary
FastDDS has heap buffer overflow in readData via Manipulated DATA Submessage when DDS Security is enabled
Details

Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group ). Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes a heap buffer overflow, resulting in remote termination of Fast-DDS. If the fields of PID_IDENTITY_TOKEN or PID_PERMISSIONS_TOKEN in the DATA Submessage are tampered with — specially readOctetVector reads an unchecked vecsize that is propagated unchanged into readData as the length parameter — the attacker-contro lled vecsize can trigger a 32-bit integer overflow during the length calculation. That overflow can cause large alloca tion attempt that quickly leads to OOM, enabling a remotely-triggerable denial-of-service and remote process termination. Versions 3.4.1, 3.3.1, and 2.6.11 patch the issue.

Database specific 
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/62xxx/CVE-2025-62602.json",
    "cna_assigner": "GitHub_M",
    "cwe_ids": [
        "CWE-122"
    ]
}
References

Affected packages

Git / github.com/eprosima/fast-dds

Affected ranges

Type
GIT
Repo
https://github.com/eprosima/fast-dds
Events
Introduced
bf1d4c34c3b2b6267cd854346b1477854967264e
Fixed
f4eaa03986ab228f56042160761836995974e671
Database specific 
{
    "versions": [
        {
            "introduced": "3.4.0"
        },
        {
            "fixed": "3.4.1"
        }
    ]
}
Type
GIT
Repo
https://github.com/eprosima/fast-dds
Events
Introduced
c53cd0a425e6f5483fbd971eb584b4360c306891
Fixed
4ba5a3b754ee4fd40f8ae0feb3aff7e6708aae4a
Database specific 
{
    "versions": [
        {
            "introduced": "3.0.0"
        },
        {
            "fixed": "3.3.1"
        }
    ]
}
Type
GIT
Repo
https://github.com/eprosima/fast-dds
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
87dd60c8f3e8694481ad0279bd4cc8c645050da3
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "2.6.11"
        }
    ]
}

Affected versions

2.*
2.0.0-beta
2.0.0-rc
Other
Discovery-Time_Data_Typing
v0.*
v0.5.2
v1.*
v1.0.0
v1.0.0.a
v1.0.6
v1.1.0
v1.2.0
v1.3.0
v1.3.1
v1.4.0
v1.5.0
v1.6.0
v1.7.0
v1.7.1
v1.7.2
v1.8.0
v1.8.0-2
v1.8.1
v1.9.0
v1.9.0-beta
v1.9.0-beta-2
v2.*
v2.1.0
v2.2.0
v2.3.0-1
v2.3.0-api

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-62602.json"