CVE-2025-1252

Heap-based Buffer Overflow vulnerability in RTI Connext Professional (Core Libraries) allows Overflow Variables and Tags.This issue affects Connext Professional: from 7.4.0 before 7.5.0, from 7.0.0 before 7.3.0.7, from 4.4 before 6.1.2.23.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.1 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
RTICNA
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 2%
VendorProductVersion
rticonnext_professional
4.4 ≤
𝑥
≤ 5.2.3
rticonnext_professional
5.3.0 ≤
𝑥
≤ 5.3.1.45
rticonnext_professional
6.0.0 ≤
𝑥
≤ 6.0.1.40
rticonnext_professional
6.1.0 ≤
𝑥
< 6.1.2.23
rticonnext_professional
7.0.0 ≤
𝑥
< 7.3.0.7
rticonnext_professional
7.4.0 ≤
𝑥
< 7.5.0
𝑥
= Vulnerable software versions