CVE-2024-33903

low-risk
Published 2024-04-29

In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pedestrians or bicycles, in part because the collision sensor function is not exposed to the Blueprint library.

Do I need to act?

-
0.07% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.9/10 Medium
NETWORK / HIGH complexity

References (10)

https://github.com/carla-simulator/carla/blob/60bd026b4822b4edb8a68cc17b9119866f...
https://github.com/carla-simulator/carla/issues/7025
https://github.com/carla-simulator/carla/issues/7394#issuecomment-2058130066
https://github.com/carla-simulator/carla/pull/7445
https://github.com/carla-simulator/carla/tags
https://github.com/carla-simulator/carla/blob/60bd026b4822b4edb8a68cc17b9119866f...
https://github.com/carla-simulator/carla/issues/7025
https://github.com/carla-simulator/carla/issues/7394#issuecomment-2058130066
https://github.com/carla-simulator/carla/pull/7445
https://github.com/carla-simulator/carla/tags
23
/ 100
low-risk
Severity 18/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal