CVE-2025-62599 Eprosima — Exploit & Vulnerability Details HIGH

Parameter	Value
CVSS	7.5 (HIGH)
Affected Versions	3.0.0 — 3.3.1
Fixed In	2.6.11
Type	CWE-190 (Integer Overflow), CWE-125 (Out-of-bounds Read), CWE-789
Vendor	Eprosima
Public PoC	No

eprosima Fast DDS is a C++ implementation of the DDS (Data Distribution Service) standard of the OMG (Object Management Group). Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory (OOM) condition, resulting in remote termination of Fast-DDS. If the fields of PID_IDENTITY_TOKEN or PID_PERMISSION_TOKEN in the DATA Submessage — specifically by tampering with the length field in readPropertySeq — are modified, an integer overflow occurs, leading to an OOM during the resize operation.

This vulnerability is fixed in 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1.

Attack Parameters

Attack Vector

Network

Can be exploited remotely

Attack Complexity

Low

Easy to exploit

Privileges Required

None

No privileges needed

User Interaction

None

No user interaction needed

Impact Assessment

Confidentiality

None

No data leak

Integrity

None

No data modification

Availability

High

Complete denial of service

CVSS Vector v3.1

Weakness Type (CWE)

CWE-190 Integer Overflow

CWE-125 Out-of-bounds Read

CWE-789

Vulnerable Products 6

Configuration	From (including)	Up to (excluding)
Eprosima Fast_Dds cpe:2.3:a:eprosima:fast_dds::::::::	—	`2.6.11`
Eprosima Fast_Dds cpe:2.3:a:eprosima:fast_dds::::::::	`3.0.0`	`3.3.1`
Eprosima Fast_Dds cpe:2.3:a:eprosima:fast_dds:3.4.0:::::::*	—	—
Debian Debian_Linux cpe:2.3:o:debian:debian_linux:11.0:::::::*	—	—
Debian Debian_Linux cpe:2.3:o:debian:debian_linux:12.0:::::::*	—	—
Debian Debian_Linux cpe:2.3:o:debian:debian_linux:13.0:::::::*	—	—