CVE-2026-32724 PX4 autopilot has a heap Use-After-Free in MavlinkShell::available() via SERIAL_CONTROL Race Condition

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc1, a heap-use-after-free is detected in the MavlinkShell::available function. The issue is caused by a race condition between the MAVLink receiver thread which handles shell creation/destruction and the telemetry sender thre...

PX4 Drone Autopilot 安全漏洞

PX4 Drone Autopilot is a PX4 drone autopilot open source by PX4 Autopilot. A security vulnerability exists in PX4 Drone Autopilot version 1.16.0 and earlier, which originates in the function MavlinkLogHandler::statelisting/ in the file src/modules/mavlink/mavlinkloghandler.cpp. A stack buffer...

EUVD-2025-16967

Malicious code in bioql PyPI...

CVE-2025-5640

A vulnerability was found in PX4-Autopilot 1.12.3. It has been classified as problematic. This affects the function MavlinkReceiver::handlemessagetrajectoryrepresentationwaypoints of the file mavlinkreceiver.cpp of the component TRAJECTORYREPRESENTATIONWAYPOINTS Message Handler. The manipulation...

CVE-2025-5640 PX4-Autopilot TRAJECTORY_REPRESENTATION_WAYPOINTS Message mavlink_receiver.cpp stack-based overflow

A vulnerability was found in PX4-Autopilot 1.12.3. It has been classified as problematic. This affects the function MavlinkReceiver::handlemessagetrajectoryrepresentationwaypoints of the file mavlinkreceiver.cpp of the component TRAJECTORYREPRESENTATIONWAYPOINTS Message Handler. The manipulation...

CVE-2024-40427

CVE-2024-40427 affects PX4‑Autopilot with a stack buffer overflow in v1.14.3. The vulnerability can allow an attacker to run commands and cause the program to refuse to execute. Affected component: PX4‑Autopilot v1.14.3; root cause: stack-based overflow. Public references attest to the issue and ...

PT-2024-28291 · Unknown · Px4-Autopilot

Name of the Vulnerable Software and Affected Versions: PX4-Autopilot version 1.14.3 Description: A buffer overflow issue was discovered in PX4-Autopilot via the topic name parameter at the "/logger/logged topics.cpp" API endpoint. Recommendations: For PX4-Autopilot version 1.14.3, as a temporary...

Microsoft Windows 安全漏洞

Microsoft Windows is a suite of operating systems for use on personal devices from the U.S.-based Microsoft Corporation Microsoft. A security vulnerability exists in Microsoft Windows Autopilot. The following products and editions are affected: Windows 10 Version 21H1 for x64-based Systems,Window...

CVE-2004-1422

WHM AutoPilot 2.4.6.5 and earlier allows remote attackers to gain sensitive information via phpinfo, which reveals php settings...

[Full-Disclosure] Benchmark Designs' WHM Autopilot backdoor vulnerability to plain-text password.

Subject: Benchmark Designs' WHM Autopilot Probably all versions up to 2.4.5 vulerable to plain-text credential leakage via backdoor. Preamble: Benchmark Designs' WHM Autopilot is a client management system made for webhosts, in order to simplify webhosting business management. It manages CPanel...