Login Sign Up

CVE-2024-44854

7.5 HIGH
Denial of Service

📋 TL;DR

CVE-2024-44854 is a NULL pointer dereference vulnerability in ROS2 navigation2's smoothPlan() function that can cause denial of service or potentially arbitrary code execution. This affects robotic systems using ROS2 navigation2 v.humble. Attackers could crash navigation services or potentially gain control of robotic systems.

💻 Affected Systems

Products:
  • ROS2 navigation2
Versions: v.humble (specific commit range before fix)
Operating Systems: Linux, ROS2-supported platforms
Default Config Vulnerable: ⚠️ Yes
Notes: Affects systems using navigation2 with smoothPlan() functionality enabled.

📦 What is this software?

Robot Operating System by Openrobotics

View all CVEs affecting Robot Operating System →

Robot Operating System by Openrobotics

View all CVEs affecting Robot Operating System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete system compromise, allowing attackers to take control of robotic systems or underlying infrastructure.

🟠

Likely Case

Denial of service causing navigation services to crash, disrupting robotic operations and requiring manual restart.

🟢

If Mitigated

Service disruption with automatic recovery if monitoring and restart mechanisms are in place.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

NULL pointer dereference vulnerabilities are typically easy to trigger once the attack vector is identified.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Fixed in navigation2 commit referenced in pull request #4544

Vendor Advisory: https://github.com/ros-navigation/navigation2/issues/4538

Restart Required: Yes

Instructions:

1. Update navigation2 package to latest version. 2. Apply patch from pull request #4544. 3. Rebuild and restart navigation services.

🔧 Temporary Workarounds

Disable smoothPlan functionality

linux

Temporarily disable or bypass the smoothPlan() function if not critical for operations.

# Modify navigation configuration to avoid smoothPlan usage
# Check navigation2 configuration files for smoothPlan references

🧯 If You Can't Patch

  • Implement network segmentation to isolate robotic systems from untrusted networks.
  • Deploy monitoring and automatic restart mechanisms for navigation services.

🔍 How to Verify

Check if Vulnerable:

Check navigation2 version and commit hash against vulnerable range in GitHub issues.

Check Version:

ros2 pkg list | grep navigation2 && apt show ros-humble-navigation2

Verify Fix Applied:

Verify navigation2 is updated to version containing fix from pull request #4544.

📡 Detection & Monitoring

Log Indicators:

  • Segmentation fault errors in ROS2 logs
  • Navigation service crashes
  • Unexpected process termination

Network Indicators:

  • Unusual traffic to navigation services
  • Service unavailability alerts

SIEM Query:

process.name:"navigation2" AND (event.action:"segmentation_fault" OR event.outcome:"failure")

📊 Metadata

CVE ID: CVE-2024-44854
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-476
Published: December 6, 2024
Last Updated: December 13, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-44854, you might also want to check these:

CVE-2022-36648 10.0

This CVE describes a vulnerability in QEMU's hardware emulation where a malformed program executed i...

Same vulnerability type (CWE-476)
CVE-2022-30592 9.8

This vulnerability in LiteSpeed QUIC (LSQUIC) before version 3.1.0 involves improper handling of MAX...

Same vulnerability type (CWE-476)
CVE-2023-47003 9.8

A NULL pointer dereference vulnerability in RedisGraph allows attackers to execute arbitrary code or...

Same vulnerability type (CWE-476)