Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries)...

8.3 / 10

HIGH

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N

Description

Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipulation.This issue affects Connext Professional: from 7.4.0 before 7.6.0, from 7.0.0 before 7.3.0.10, from 6.1.0 before 6.1.2.27, from 6.0.0 before 6.0.*, from 5.3.0 before 5.3.*, from 4.4a before 5.2.*.

Basic Information

ID CVE-2025-4993

Source RTI

Published Sep 23, 2025 at 17:51

Affected Product

Vendor RTI

Product Connext Professional

Version 7.4.0

Affected Versions RTI Connext Professional 7.4.0
RTI Connext Professional 7.0.0
RTI Connext Professional 6.1.0
RTI Connext Professional 6.0.0
RTI Connext Professional 5.3.0
RTI Connext Professional 4.4a

CWE Classification

CWE-822

References

www.rti.com /vulnerabilities/

{
    "lastseen": "",
    "description": "Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipulation.This issue affects Connext Professional: from 7.4.0 before 7.6.0, from 7.0.0 before 7.3.0.10, from 6.1.0 before 6.1.2.27, from 6.0.0 before 6.0.*, from 5.3.0 before 5.3.*, from 4.4a before 5.2.*.",
    "published": "2025-09-23T17:51:51.489Z",
    "modified": "2025-09-23T17:51:51.489Z",
    "type": "cve",
    "title": "Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipulation.",
    "source": "RTI",
    "references": "https://www.rti.com/vulnerabilities/#cve-2025-4993",
    "id": "CVE-2025-4993",
    "bulletinFamily": "",
    "cwe": [
        "CWE-822"
    ],
    "cvelist": null,
    "sourceData": "RTI Connext Professional 7.4.0\nRTI Connext Professional 7.0.0\nRTI Connext Professional 6.1.0\nRTI Connext Professional 6.0.0\nRTI Connext Professional 5.3.0\nRTI Connext Professional 4.4a",
    "sourceHref": "",
    "cvss": {
        "score": 8.3,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Connext Professional",
    "version": "7.4.0",
    "vendor": "RTI",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Untrusted Pointer Dereference vulnerability in RTI Connext Professional (Core Libraries) allows Pointer Manipulation._CVE-2025-4993