76 matches found
CVE-2026-36912
A NULL pointer dereference in MPC-BE’s AP4_AtomSampleTable::GetSample() (Aleksoid1978 MPC-BE) before commit 4341cb3 allows a crafted MP4 file to cause a Denial of Service. The available documents do not specify a patched version or concrete remediation; exploit details are not provided in the sou...
CVE-2026-26741
PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...
EUVD-2026-10752
PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...
EUVD-2026-10753
PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...
CVE-2026-26741
PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...
CVE-2026-26741
PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...
CVE-2026-26741
PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...
CVE-2026-26741
PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...
CVE-2026-26741
PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...
CVE-2026-26741
PX4 Autopilot versions 1.12.x–1.15.x contain a logic flaw in the mode-switching mechanism. When switching from Auto to Manual while the drone is ARMED (post-landing and before automatic disarm via COM_DISARM_LAND), there is no throttle-threshold safety check on the physical throttle stick. This c...
PT-2026-24381
Name of the Vulnerable Software and Affected Versions PX4 Autopilot versions 1.12.x through 1.15.x Description The autopilot software contains a logic flaw in the mode switching mechanism. Specifically, when transitioning from Auto mode to Manual mode while the drone is in the "ARMED" state – aft...
Europol Arrests 34 Black Axe Members in Spain Over €5.9M Fraud and Organized Crime
Europol on Friday announced the arrest of 34 individuals in Spain who are alleged to be part of an international criminal organization called Black Axe. As part of an operation conducted by the Spanish National Police, in coordination with the Bavarian State Criminal Police Office and Europol, 28...
EUVD-2025-106523
Malicious code in armeddragonz3n npm...
Malicious code in armed_dragon_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0565ab9bf3565519a39588ad88308f2535bb226c73cbb7c06c78f808f11c23b2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
Malicious code in armed_zebra_z3n (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 5d47802a2523b4382fe78f8957b90c3d5cb031a0c3a4dc51171428532bf3fddd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-93160
Malicious code in armedzebraz3n npm...
EUVD-2025-93161
Malicious code in armedclownfishz3n npm...
MAL-2025-99603 Malicious code in armed_mackerel-smiletea (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1ffd8dc4ba9285b401aadca7bacfafcfd3f64b90fb0d0ba818b76ea648548d82 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-74996
Malicious code in armedmackerel-smiletea npm...
EUVD-2025-77740
Malicious code in armedgoosez3n npm...