← Retour aux CVEs
CVE-2021-38487
HIGH8.2
Description
RTI Connext Professional versions 4.1 to 6.1.0, and Connext Micro versions 2.4 and later are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic. This may result in a denial-of-service condition and information exposure.
Details CVE
Score CVSS v3.18.2
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H
Vecteur d'attaqueNETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie5/5/2022
Derniere modification6/23/2025
Sourcenvd
Observations honeypot0
Produits affectes
rti:connext_dds_microrti:connext_professionalrti:connext_secure
Faiblesses (CWE)
CWE-406CWE-923
References
https://support.rti.com/s/login/?ec=302&startURL=%2Fs%2F(3f572a00-62e2-4423-959a-7ea25eff1638)
https://www.cisa.gov/uscert/ics/advisories/icsa-21-315-02(3f572a00-62e2-4423-959a-7ea25eff1638)
https://www.rti.com/vulnerabilities/#cve-2021-38487(3f572a00-62e2-4423-959a-7ea25eff1638)
https://support.rti.com/s/login/?ec=302&startURL=%2Fs%2F(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/uscert/ics/advisories/icsa-21-315-02(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.