CVE Catalog

CVE-2026-30799

HighCVSS 8.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.27%

18th percentile - higher than 18% of all known CVEs

Summary

Missing authentication for a critical function in RTI Connext Professional (Security Plugins) allows identity spoofing. The vulnerability affects versions from 5.3.0 to 7.4.0 before 7.7.0.

Risk Assessment

An attacker can impersonate a trusted entity in the DDS system, leading to unauthorized data access or communication disruption.

Recommendation

Immediately upgrade to version 7.7.0 or later, or apply the relevant security patches from the vendor if upgrading is not possible.

Original NVD description (English source)

Missing Authentication for Critical Function vulnerability in RTI Connext Professional (Security Plugins) allows Identity Spoofing.This issue affects Connext Professional: from 7.4.0 before 7.7.0, from 7.0.0 before 7.3.*, from 6.1.0 before 6.1.*, from 6.0.0 before 6.0.*, from 5.3.0 before 5.3.*.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS