Eclipse Cyclone_data_distribution_service

4 CVEs affecting Eclipse Cyclone_data_distribution_service. Latest disclosed: 2025-12-23. Critical: 2, High: 2.

Top CVEs affecting Eclipse Cyclone_data_distribution_service
CVESeverityScorePublishedSummary
CVE-2025-67109Critical10.02025-12-23Improper verification of the time certificate in Eclipse Cyclone DDS before v0.10.5 allows attackers to bypass certificate checks and execute commands with Sys…
CVE-2024-10838Critical9.12025-03-12An integer underflow during deserialization may allow any unauthenticated user to read out of bounds heap memory. This may result into secret data or pointers…
CVE-2020-18735High7.52021-08-23A heap buffer overflow in /src/dds_stream.c of Eclipse IOT Cyclone DDS Project v0.1.0 causes the DDS subscriber server to crash.
CVE-2020-18734High7.52021-08-23A stack buffer overflow in /ddsi/q_bitset.h of Eclipse IOT Cyclone DDS Project v0.1.0 causes the DDS subscriber server to crash.