Cleartext Transmission Vulnerability in ROS2 Foxy Fitzroy

Cleartext Transmission Vulnerability in ROS2 Foxy Fitzroy

CVE-2023-51201 · MEDIUM Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Cleartext Transmission issue in ROS2 (Robot Operating System 2) Foxy Fitzroy, with ROS_VERSION=2 and ROS_PYTHON_VERSION=3 allows attackers to access sensitive information via a man-in-the-middle attack. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability.

Learn more about our Cis Benchmark Audit For Robot Operating System.