CVE-2025-24807

low-risk
Published 2025-02-11

eprosima Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to versions 2.6.10, 2.10.7, 2.14.5, 3.0.2, 3.1.2, and 3.2.0, per design, PermissionsCA is not full chain validated, nor is the expiration date validated. Access control plugin validates only the S/MIME signature which causes an expired PermissionsCA to be taken as valid. Even though this issue is responsible for allowing `governance/permissions` from an expired PermissionsCA and having the system crash when PermissionsCA is not self-signed and contains the full-chain, the impact is low. Versions 2.6.10, 2.10.7, 2.14.5, 3.0.2, 3.1.2, and 3.2.0 contain a fix for the issue.

Do I need to act?

-
0.11% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.1/10 High
LOCAL / LOW complexity

Affected Products (1)

Affected Vendors

Eprosima

References (6)

Product https://github.com/eProsima/Fast-DDS/blob/2.6.9/src/cpp/security/accesscontrol/P...
Product https://github.com/eProsima/Fast-DDS/blob/2.6.9/src/cpp/security/accesscontrol/P...
Product https://github.com/eProsima/Fast-DDS/blob/2.6.9/src/cpp/security/authentication/...
Patch https://github.com/eProsima/Fast-DDS/pull/5530
Vendor Advisory https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-w33g-jmm2-8983
Related https://www.omg.org/spec/DDS-SECURITY/1.1/PDF
27
/ 100
low-risk
Severity 22/34 · High
Exploitability 0/34 · Minimal
Exposure 5/34 · Minimal