Lucene search
K

15 matches found

Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.11 views

PT-2026-52553

Name of the Vulnerable Software and Affected Versions CANBoat versions prior to 6.23 Description An off-by-one global buffer overflow exists in the searchForPgn function within the analyzer/pgn.c file. A remote attacker can trigger an out-of-bounds array access and cause a denial of service,...

7.3CVSS6.1AI score0.00215EPSS
Exploits0References8
Mageia
Mageia
added 2026/01/30 12:39 a.m.8 views

Updated gpsd packages fix security vulnerabilities

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

9.8CVSS6.1AI score0.00674EPSS
Exploits3References2
OSV
OSV
added 2026/01/30 12:39 a.m.5 views

MGASA-2026-0028 Updated gpsd packages fix security vulnerabilities

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

9.8CVSS6.1AI score0.00674EPSS
Exploits3References3
OpenVAS
OpenVAS
added 2026/01/30 12:0 a.m.4 views

Mageia: Security Advisory (MGASA-2026-0028)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.9AI score0.00674EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2026/01/21 12:0 a.m.7 views

MiracleLinux 9 : gpsd-minimal-3.26.1-1.el9_7.1 (AXSA:2026-055:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-055:01 advisory. gpsd: gpsd: Denial of Service due to malformed NAVCOM packet parsing CVE-2025-67269 gpsd: gpsd: Arbitrary code execution via heap-based out-of-bounds...

9.8CVSS6.2AI score0.00674EPSS
Exploits3References3
Rockylinux
Rockylinux
added 2026/01/20 9:5 a.m.11 views

gpsd-minimal security update

An update is available for gpsd-minimal. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list gpsd is a service daemon that mediates access to a GPS sensor connected ...

9.8CVSS6.2AI score0.00674EPSS
Exploits3
OSV
OSV
added 2026/01/08 2:34 p.m.10 views

USN-7948-1 gpsd vulnerabilities

It was discovered that GPSd incorrectly handled processing NMEA2000 packets. An attacker could use this issue to cause GPSd to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2025-67268 It was discovered that GPSd incorrectly handled processing NAVCOM packets. An...

9.8CVSS6AI score0.00674EPSS
Exploits3References3
Ubuntu
Ubuntu
added 2026/01/08 2:34 p.m.6 views

USN-7948-1: GPSd vulnerabilities

It was discovered that GPSd incorrectly handled processing NMEA2000 packets. An attacker could use this issue to cause GPSd to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2025-67268 It was discovered that GPSd incorrectly handled processing NAVCOM packets. An...

9.8CVSS5.8AI score0.00674EPSS
Exploits3
SUSE CVE
SUSE CVE
added 2026/01/06 12:24 a.m.7 views

SUSE CVE-2025-67268

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

9.8CVSS8AI score0.00674EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added 2026/01/03 11:11 a.m.7 views

CVE-2025-67268

A flaw was found in gpsd. The hnd129540 function, responsible for handling NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to properly validate the user-supplied satellite count. A remote attacker can exploit this by sending a specially crafted packet with an excessive satellite count,...

9.8CVSS7.2AI score0.00674EPSS
Exploits2References6
UbuntuCve
UbuntuCve
added 2026/01/02 4:17 p.m.4 views

CVE-2025-67268

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

9.8CVSS5.9AI score0.00674EPSS
Exploits2References3
NVD
NVD
added 2026/01/02 4:17 p.m.7 views

CVE-2025-67268

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

9.8CVSS0.00674EPSS
Exploits2References9
Cvelist
Cvelist
added 2026/01/02 12:0 a.m.19 views

CVE-2025-67268

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

0.00674EPSS
Exploits2References3
CVE
CVE
added 2026/01/02 12:0 a.m.38 views

CVE-2025-67268

gpsd contains a heap-based out-of-bounds write in drivers/driver_nmea2000.c (PGN 129540 handling). The hnd_129540 function validates the satellite count against a 184-element skyview array, but an input satellite count up to 255 can overflow the array, causing memory corruption, DoS, and potentia...

9.8CVSS7.6AI score0.00674EPSS
Exploits2References9Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/02 12:0 a.m.1 views

CVE-2025-67268

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/drivernmea2000.c file. The hnd129540 function, which handles NMEA2000 PGN 129540 GNSS Satellites in View packets, fails to validate the user-supplied satellite count against the size of the skyview...

7.6AI score0.00674EPSS
Exploits2References3
Rows per page
Query Builder