{"id":750,"date":"2025-04-20T10:35:42","date_gmt":"2025-04-20T10:35:42","guid":{"rendered":"http:\/\/localhost\/?p=750"},"modified":"2025-04-20T10:35:42","modified_gmt":"2025-04-20T10:35:42","slug":"exploit-for-cve-2023-50257","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=750","title":{"rendered":"Exploit for CVE-2023-50257"},"content":{"rendered":"
\n

Vulnerability Details<\/h2>\n
\n

Basic Information<\/h3>\n\n\n\n\n\n\n
Title<\/th>\nExploit for CVE-2023-50257<\/td>\n<\/tr>\n
Type<\/th>\ngithubexploit<\/td>\n<\/tr>\n
Published<\/th>\n2025-04-20T11:32:14<\/td>\n<\/tr>\n
Last Seen<\/th>\n2025-04-20T15:04:22<\/td>\n<\/tr>\n
CVSS Score<\/th>\n9.6 (CRITICAL)<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

CVSS v3 Details<\/h3>\n\n\n\n\n\n\n\n\n\n
Attack Vector<\/th>\nADJACENT<\/td>\n<\/tr>\n
Attack Complexity<\/th>\nLOW<\/td>\n<\/tr>\n
Privileges Required<\/th>\nNONE<\/td>\n<\/tr>\n
User Interaction<\/th>\nNONE<\/td>\n<\/tr>\n
Scope<\/th>\nCHANGED<\/td>\n<\/tr>\n
Confidentiality Impact<\/th>\nHIGH<\/td>\n<\/tr>\n
Integrity Impact<\/th>\nHIGH<\/td>\n<\/tr>\n
Availability Impact<\/th>\nHIGH<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

CVE Information<\/h3>\n\n\n\n\n
CVE IDs<\/th>\nCVE-2023-50257<\/td>\n<\/tr>\n
CWE<\/th>\n<\/td>\n<\/tr>\n
Bulletin Family<\/th>\nexploit<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

Description<\/h3>\n
\n # ROS2 CVE-2023-50257 Reproduction<\/p>\n

## \ud83d\udd0d Overview<\/p>\n

This repository is based on a PoC for CVE-2023-50257 and automates the collection of RTPS packets, parses GUID values, and sends a successful DoS packet.
\n**CVE-2023-50257** is a known security vulnerability in ROS2 (Robot Operating System 2).
\n– [https:\/\/github.com\/eProsima\/Fast-DDS\/security\/advisories\/GHSA-v5r6-8mvh-cp98](https:\/\/github.com\/eProsima\/Fast-DDS\/security\/advisories\/GHSA-v5r6-8mvh-cp98)
\n– [https:\/\/github.com\/Desglaneurs\/BoB_Des_glaneurs\/tree\/main\/CVE-2023-50257](https:\/\/github.com\/Desglaneurs\/BoB_Des_glaneurs\/tree\/main\/CVE-2023-50257)
\n> \u26a0\ufe0f **This project is strictly for educational and research purposes. Do not use it in production or against systems you do not own or have permission to test.**<\/p>\n

## \ud83e\uddea Environment<\/p>\n

– OS: Ubuntu 22.04
\n– ROS2 version: ros2 humble \/ fastdds(2.6.3) \/ rmw(6.2.3)<\/p>\n

## \ud83d\ude80 Getting Started<\/p>\n

1. Build the Docker image to set up the environment:
\n“`bash
\ngit clone https:\/\/github.com\/Jminis\/CVE-2023-50257.git
\ndocker build -t cve_2023_50257 .
\ndocker network create ros2_net<\/p>\n

“`
\n2. In Terminal 1 (listener), run the following command:
\n“`bash
\ndocker run -it –net ros2_net –name talker cve_2023_50257
\nros2 run demo_nodes_cpp talker
\n“`<\/p>\n

3. In Terminal 2 (talker), run the following command:
\n“`bash
\ndocker run -it –net ros2_net –name talker cve_2023_50257
\nros2 run demo_nodes_cpp talker
\n“`<\/p>\n

4. In Terminal 3 (host), execute `ex.py`
\n“`bash
\npip install scapy
\nsudo -E python3 ex.py
\n“`<\/p>\n

## \ud83d\udcfa Demo
\n![DEMO](https:\/\/github.com\/Jminis\/CVE-2023-50257\/blob\/main\/DEMO\/TEST.gif)<\/p><\/div>\n<\/p><\/div>\n

\n

Impact Assessment<\/h3>\n\n\n\n
Base Score<\/th>\n9.6<\/td>\n<\/tr>\n
Severity<\/th>\nCRITICAL<\/td>\n<\/tr>\n<\/table><\/div>\n
\n

View full CVE details<\/a><\/p>\n<\/p><\/div>\n<\/div>\n