CVE-2021-38429
OCI OpenDDS Secure Network Amplification
In short
A flaw in OCI OpenDDS before version 3.18.1 allows attackers to send specially crafted packets that flood networks with unwanted traffic, potentially disrupting service and exposing information.
Technical detail
CWE-406 vulnerability enabling network amplification attacks where specially crafted packets sent to vulnerable OpenDDS instances (pre-3.18.1) are amplified and reflected toward target devices, causing denial-of-service and potential information disclosure without requiring authentication.
Summary generated and translated by AI from the official description.
OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition and information exposure.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H
Affected products
OCI · OpenDDSWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →