Cyclone data distribution service
This hub aggregates every CVE we track for Cyclone data distribution service, a product in the devtools ci space. Use it to gauge the current risk picture and drill into individual advisories.
4
CVEs tracked
2
Critical
2
High
0
In CISA KEV
Severity distribution
HIGH2CRITICAL2
Monthly trend
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
1
0
0
0
0
0
0
2024-072026-06
Latest CVEs
The 4 most recently published vulnerabilities affecting Cyclone data distribution service.
- CVE-2025-67109Improper verification of the time certificate in Eclipse Cyclone DDS before v0.10.5 allows attackers to bypass certificate checks and execute commands with System privileges.10.0
- CVE-2024-10838Integer Underflow in DDS_Security_Deserialize_ methods may lead to OOB read9.1
- CVE-2020-18735A heap buffer overflow in /src/dds_stream.c of Eclipse IOT Cyclone DDS Project v0.1.0 causes the DDS subscriber server to crash.7.5
- CVE-2020-18734A stack buffer overflow in /ddsi/q_bitset.h of Eclipse IOT Cyclone DDS Project v0.1.0 causes the DDS subscriber server to crash.7.5
Product normalization is registry-driven with AI assist and human review. How it works