Primary

Context

OpenDDS Integer Overflow Vulnerability in RTPS Protocol Leading to Denial-of-Service

Vulnerability

A denial-of-service vulnerability has been identified in OpenDDS versions prior to 3.33.0, stemming from an integer overflow in the Real-Time Publish-Subscribe (RTPS) protocol implementation. This vulnerability allows attackers to cause a crash by sending crafted messages that exploit the overflow condition.

Impact

Exploitation of this vulnerability leads to a segmentation fault, causing the application to crash.

Reproduction

The vulnerability can be reproduced by sending DATA-FRAG sub messages with manipulated lengths that cause an integer underflow. This can be done by declaring smaller sub message lengths while embedding large amounts of data in the inlineQoS field. The crafted message will be processed in a way that triggers the integer overflow, causing the application to read from an invalid memory location and crash.

Added: Dec 23, 2025, 4:20 PM

Updated: Dec 23, 2025, 5:26 PM

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

9.1

remediation

0.0

relevance

1.6

threat

6.4

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.3

impact

2.5

exploitability

9.1

remediation

0.0

relevance

1.6

threat

6.4

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenDDS Integer Overflow Vulnerability in RTPS Protocol Leading to Denial-of-Service

Vulnerability

Impact

Reproduction

Affected Products

OpenDDS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating