CVE-2026-7300
MediumCVSS 6.5Exploitation Probability (EPSS)
Low risk20th percentile - higher than 20% of all known CVEs
Summary
A classic buffer overflow vulnerability has been found in RTI Connext Professional (Web Integration Service) due to copying data without checking input size. An attacker can exploit this flaw to cause filter failure, potentially leading to uncontrolled system behavior.
Risk Assessment
The risk for the organization includes potential remote code execution or disruption of the Web Integration Service, which could compromise data integrity and system availability.
Recommendation
It is recommended to immediately update RTI Connext Professional to version 7.3.1.3 or later (for the 7.0.x branch) and to version 6.1.* (for the 6.1.x branch). For the 7.4.0 branch, apply the patch before version 7.*.
Original NVD description (English source)
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in RTI Connext Professional (Web Integration Service) allows Filter Failure through Buffer Overflow.This issue affects Connext Professional: from 7.4.0 before 7.*, from 7.0.0 before 7.3.1.3, from 6.1.2 before 6.1.*.

