ArduPilot Project 缓冲区错误漏洞

The ArduPilot Project is an open-source autopilot software developed by ArduPilot, supporting control of various unmanned vehicles. The ArduPilot Project has a buffer overflow vulnerability, which stems from buffer overflows in the APMSP::loop, APMSP, and APMSP.cpp components. This vulnerability...

CVE-2026-26741

PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...

CVE-2025-15150 PX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_from_id stack-based overflow

A vulnerability was found in PX4 PX4-Autopilot up to 1.16.0. Affected by this issue is the function MavlinkLogHandler::statelisting/MavlinkLogHandler::logentryfromid of the file src/modules/mavlink/mavlinkloghandler.cpp. The manipulation results in stack-based buffer overflow. The attack is only...

PT-2025-33453 · Px4 · Px4-Autopilot

Name of the Vulnerable Software and Affected Versions: PX4 PX4-Autopilot versions through 1.15.4 Description: A use-after-free issue exists in the MavlinkReceiver::handle message serial control function within the src/modules/mavlink/mavlink receiver.cpp file of the Mavlink Shell Closing Handler...

CVE-2024-38952

PX4-Autopilot v1.14.3 was discovered to contain a buffer overflow via the topicname parameter at /logger/loggedtopics.cpp...