TROYANOSYVIRUS
Back to CVEs

CVE-2025-67108

CRITICAL
10.0

Description

eProsima Fast-DDS v3.3 was discovered to contain improper validation for ticket revocation, resulting in insecure communications and connections.

CVE Details

CVSS v3.1 Score10.0
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published12/23/2025
Last Modified1/2/2026
Sourcenvd
Honeypot Sightings0

Affected Products

eprosima:fast_dds

Weaknesses (CWE)

CWE-298CWE-370

References

http://eprosima.com(cve@mitre.org)
http://fast-dds.com(cve@mitre.org)
https://gist.github.com/lkloliver/81b5d5a8328d712dbfd497bf11dbe913(cve@mitre.org)
https://github.com/eProsima/Fast-DDS/blob/master/src/cpp/security/accesscontrol/Permissions.cpp#L263(cve@mitre.org)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.