HarborGuardharborguardDatabase
Back to search
HIGHCVE-2026-7300Published Modified CNA RTI

CVE-2026-7300: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in RTI Connext Professional (Web Integration Service) allows Filter Failure through Buffer Overflow.

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in RTI Connext Professional (Web Integration Service) allows Filter Failure through Buffer Overflow.This issue affects Connext Professional: from 7.4.0 before 7.*, from 7.0.0 before 7.3.1.3, from 6.1.2 before 6.1.*.

Metrics

CVSS v4.0
8.8
Severity
HIGH
Fixed in
6.1.*
Affected Products
1

Get notified

Email me when this CVE is updated: new fix versions, severity changes, or any record change.

HarborGuard Analysis

Synopsis

A classic buffer overflow vulnerability affects the Web Integration Service component of RTI Connext Professional. The flaw is reachable over the network without any authentication, meaning a remote attacker can send a specially crafted input that overwrites adjacent memory. Successful exploitation causes a high-impact availability disruption to the service, while also enabling limited reads and writes to the affected process memory. Patched-image rebuilds at versions 6.1.*, 7.*, and 7.3.1.3 are available on HarborGuard for environments running an affected version.

HarborGuard Coverage

Detection

Detection is available across every HarborGuard environment: the CVE is ingested from upstream feeds within minutes of publication and matched against customer images in registries and CI/CD pipelines, including internally built images that bundle RTI Connext Professional. Affected version ranges (Connext Professional from 7.4.0 before 7.*, from 7.0.0 before 7.3.1.3, and from 6.1.2 before 6.1.*) are resolved against each image's installed package manifest automatically.

Available
Triage

Triage is available with a CVSS v4.0 score of 8.8 (HIGH), surfaced alongside each customer org's compliance policy weighting so higher-risk environments can be escalated appropriately. Findings are routable to the correct team inbox based on per-environment policy configuration.

Available
Patch

A patched-image rebuild targeting the fix versions (6.1.*, 7.*, and 7.3.1.3) becomes available on HarborGuard as soon as a base image containing one of those versions is resolvable. For customers with auto-remediation enabled, HarborGuard performs the rebuild, runs a regression test pass, and opens a pull request against affected workloads automatically.

Available

Exploit Conditions

  • Network reachabilityRequired

    The vulnerable Web Integration Service is exposed over the network; an attacker must be able to reach it remotely to send the malformed input.

  • AuthenticationNot required

    No credentials or prior authentication are needed to trigger the overflow (PR:N).

  • Victim interactionNot required

    The overflow is triggered entirely by attacker-controlled network input; no user action is required (UI:N).

  • Attack complexityDetail

    Exploit conditions are straightforward with no race conditions or environment-specific prerequisites required (AC:L, AT:N).

Blast Radius

  • Crashes or hangs the Web Integration Service, disrupting DDS-to-web communication for dependent applications (VA:H).
  • Reads a limited portion of the affected process's memory, potentially exposing in-flight message content or internal state (VC:L).
  • Writes a limited amount of data into adjacent memory within the affected process, with potential to corrupt internal buffers or control structures (VI:L).
  • Impact is contained to the local component; no confidentiality, integrity, or availability impact to systems outside the affected host is indicated (SC:N, SI:N, SA:N).

How HarborGuard Handles This

Available on HarborGuard: detection fires within minutes of CVE publication against any image carrying a vulnerable Connext Professional build (versions from 6.1.2 before 6.1.*, from 7.0.0 before 7.3.1.3, and from 7.4.0 before 7.*). Where compliance policy permits, a patched-image rebuild at one of the fix versions is queued automatically. For customers with auto-remediation enabled, HarborGuard handles the full remediation loop: rebuild, regression test run, and a pull request opened against affected workloads; median time from CVE publication to merged patch PR for high-severity issues is around 90 minutes in these environments. Until a rebuild is deployed, compensating controls such as network-policy rules restricting external access to the Web Integration Service port and egress filtering on the host can reduce exposure to this unauthenticated network vector.

See how HarborGuard automates this

Fix available

6.1.*7.*7.3.1.3
Affected packages
  • RTI / Connext Professional
    < 7.* (from 7.4.0) · < 7.3.1.3 (from 7.0.0) · < 6.1.* (from 6.1.2)
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:H/SC:N/SI:N/SA:N
References