Lucene search

[email protected]NVD:CVE-2024-22519

HistoryFeb 06, 2024 - 10:16 p.m.

CVE-2024-22519

2024-02-0622:16:14

CWE-290

[email protected]

web.nvd.nist.gov

opendroneid

osm 3.5.1

drone impersonation

crafted data packets

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L

AI Score

8.1

Confidence

High

EPSS

0.001

Percentile

28.9%

JSON

An issue discovered in OpenDroneID OSM 3.5.1 allows attackers to impersonate other drones via transmission of crafted data packets.

Affected configurations

Nvd

Node

sorenfriisopendroneid_osmMatch3.5.1

VendorProductVersionCPE
sorenfriisopendroneid_osm3.5.1cpe:2.3:a:sorenfriis:opendroneid_osm:3.5.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sorenfriis	opendroneid_osm	3.5.1	cpe:2.3:a:sorenfriis:opendroneid_osm:3.5.1:::::::*

References

github.com/Drone-Lab/opendroneid-vulnerability

CVSS3

8.2

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L

AI Score

8.1

Confidence

High

EPSS

0.001

Percentile

28.9%

JSON

Related for NVD:CVE-2024-22519

cvelist1 prion1 cve1 vulnrichment1