CVE-2021-38447
OCI OpenDDS Secure Amplification
In short
OpenDDS versions before 3.18.1 can be exploited by attackers sending specially crafted packets that flood target devices with unwanted traffic, causing the system to become unavailable.
Technical detail
A specially crafted packet vulnerability in OCI OpenDDS <3.18.1 enables network-based amplification attacks where remote unauthenticated attackers can flood target devices, resulting in denial-of-service. The attack exploits packet handling mechanisms to generate disproportionate outbound traffic.
Summary generated and translated by AI from the official description.
OCI OpenDDS versions prior to 3.18.1 are vulnerable when an attacker sends a specially crafted packet to flood target devices with unwanted traffic, which may result in a denial-of-service condition.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
Affected products
OCI · OpenDDSWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →