CVE-2025-62600

HIGH 8.6

eprosima Fast DDS affected by Out-of-Memory in readBinaryPropertySeq via Manipulated DATA Submessage when DDS Security is enabled

CVSS Score

8.6

EPSS Score

0.0%

EPSS Percentile

5th

eprosima Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory (OOM) condition, resulting in remote termination of Fast-DDS. If the fields of PID_IDENTITY_TOKEN or PID_PERMISSION_TOKEN in the DATA Submessage — specifically by tampering with the length field in readBinaryPropertySeq— are modified, an integer overflow occurs, leading to an OOM during the resize operation. This vulnerability is fixed in 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1.

CWE	CWE-190 CWE-789
Vendor	eprosima
Product	fast-dds
Published	Feb 3, 2026
Last Updated	Apr 14, 2026

Stay Ahead of the Next One

Get instant alerts for eprosima fast-dds

Be the first to know when new high vulnerabilities affecting eprosima fast-dds are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

None

Availability

High

Affected Versions

eProsima / Fast-DDS

< 2.6.11 >= 2.7.0, < 2.14.6 >= 3.0.0, < 3.2.4 >= 3.3.0, < 3.3.1 >= 3.4.0, < 3.4.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

github.com: https://github.com/eProsima/Fast-DDS/security/advisories/GHSA-hvm8-mm7f-m6hc