Vulnerabilidades en PX4
14 resultadosCVE-2020-10283HIGHRVD#3317: MAVLink version handshaking allows for an attacker to bypass authenticationEPSS 1.5%CVE-2026-1579CRITICALPX4 Autopilot Missing authentication for critical functionEPSS 0.9%CVE-2023-46256MEDIUMPX4-Autopilot Heap Buffer Overflow BugEPSS 0.6%CVE-2023-47625LOWGlobal Buffer Overflow leading to denial of service in PX4-AutopilotEPSS 0.5%CVE-2026-32709MEDIUMPX4 Autopilot MAVLink FTP Unauthenticated Path Traversal (Arbitrary File Read/Write/Delete)EPSS 0.5%CVE-2026-32713MEDIUMPX4 Autopilot MAVLink FTP Session Validation Logic Error Allows Operations on Invalid File DescriptorsEPSS 0.4%CVE-2026-32743MEDIUMPX4 Autopilot: Stack-based Buffer Overflow via Oversized Path Input in MAVLink Log Request HandlingEPSS 0.4%CVE-2026-32706HIGHPX4 autopilot has a global buffer overflow in crsf_rc via oversized variable-length known packetEPSS 0.3%CVE-2026-32707MEDIUMPX4 autopilot has a stack buffer overflow in tattu_can due to unbounded memcpy in frame assembly loopEPSS 0.3%CVE-2026-32705MEDIUMPX4 autopilot BST Device Name Length Can Overflow Driver BufferEPSS 0.3%CVE-2026-32724MEDIUMPX4 autopilot has a heap Use-After-Free in MavlinkShell::available() via SERIAL_CONTROL Race ConditionEPSS 0.3%CVE-2026-32708HIGHZenoh uORB Subscriber Allows Arbitrary Stack Allocation (PX4/PX4-Autopilot)EPSS 0.2%CVE-2025-15150MEDIUMPX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_from_id stack-based overflowEPSS 0.2%CVE-2025-9020LOWPX4 PX4-Autopilot Mavlink Shell Closing mavlink_receiver.cpp handle_message_serial_control use after freeEPSS 0.1%