An issue in the default configurations of ROS2 Foxy Fitzroy ROS_VERSION=2 and ROS_PYTHON_VERSION=3 allows unauthenticated attackers to authenticate using default credentials. NOTE: this is disputed by multiple third parties who believe there was not reasonable evidence to determine the existence of a vulnerability.
https://github.com/16yashpatel/CVE-2023-51200
http://www.openwall.com/lists/oss-security/2024/04/23/5
http://www.openwall.com/lists/oss-security/2024/04/23/4