Px4 Drone Autopilot Security Vulnerabilities and Issues — Px4 Drone Autopilot CVE List

Lucene search

DronecodePx4 Drone Autopilot

12 matches found

CVE•added 2024/04/10 9:15 p.m.•53 views

CVE-2024-29460

An issue in PX4 Autopilot v.1.14.0 allows an attacker to manipulate the flight path allowing for crashes of the drone via the home point location of the mission_block.cpp component.

6.6CVSS6.8AI score0.00112EPSS

CVE•added 2024/04/23 1:15 p.m.•53 views

CVE-2024-30800

PX4 Autopilot v.1.14 allows an attacker to fly the drone into no-fly zones by breaching the geofence using flaws in the function.

5.6CVSS6.8AI score0.00032EPSS

CVE•added 2023/03/09 11:15 p.m.•47 views

CVE-2021-34125

An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow attacker to gain access to sensitive information via various nuttx commands.

7.5CVSS7.5AI score0.00126EPSS

CVE•added 2024/02/06 10:16 p.m.•41 views

CVE-2024-24254

PX4 Autopilot 1.14 and earlier, due to the lack of synchronization mechanism for loading geofence data, has a Race Condition vulnerability in the geofence.cpp and mission_feasibility_checker.cpp. This will result in the drone uploading overlapping geofences and mission routes.

4.2CVSS4.5AI score0.00037EPSS

CVE•added 2023/11/13 9:15 p.m.•37 views

CVE-2023-47625

PX4 autopilot is a flight control solution for drones. In affected versions a global buffer overflow vulnerability exists in the CrsfParser_TryParseCrsfPacket function in /src/drivers/rc/crsf_rc/CrsfParser.cpp:298 due to the invalid size check. A malicious user may create an RC packet remotely and ...

4.3CVSS4.6AI score0.00081EPSS

CVE•added 2025/01/07 7:15 p.m.•37 views

CVE-2024-40427

Stack Buffer Overflow in PX4-Autopilot v1.14.3, which allows attackers to execute commands to exploit this vulnerability and cause the program to refuse to execute

7.9CVSS7.6AI score0.00031EPSS

CVE•added 2023/10/31 4:15 p.m.•36 views

CVE-2023-46256

PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow vulnerability in the parser function due to the absence of parserbuf_index value checking. A malfunction of the sensor device can cause a heap buffer overflow wi...

9.8CVSS7.3AI score0.00304EPSS

CVE•added 2024/06/25 2:15 p.m.•32 views

CVE-2024-38952

PX4-Autopilot v1.14.3 was discovered to contain a buffer overflow via the topic_name parameter at /logger/logged_topics.cpp.

7.5CVSS7.9AI score0.00318EPSS

CVE•added 2024/02/06 11:15 p.m.•30 views

CVE-2024-24255

A Race Condition discovered in geofence.cpp and mission_feasibility_checker.cpp in PX4 Autopilot 1.14 and earlier allows attackers to send drones on unintended missions.

4.2CVSS4.5AI score0.00041EPSS

CVE•added 2024/06/25 2:15 p.m.•28 views

CVE-2024-38951

A buffer overflow in PX4-Autopilot v1.12.3 allows attackers to cause a Denial of Service (DoS) via a crafted MavLink message.

6.5CVSS7.2AI score0.00073EPSS

CVE•added 2024/04/22 1:15 a.m.•27 views

CVE-2024-30799

An issue in PX4 Autopilot v1.14 and before allows a remote attacker to execute arbitrary code and cause a denial of service via the Breach Return Point function.

4.4CVSS8AI score0.00936EPSS

CVE•added 2023/07/06 2:15 p.m.•21 views

CVE-2021-46896

Buffer Overflow vulnerability in PX4-Autopilot allows attackers to cause a denial of service via handler function handling msgid 332.

7.5CVSS7.3AI score0.00052EPSS