CNNVD-202512-4867 Information
CNNVD ID
CNNVD-202512-4867
Related CVE
- CNNVD Published: 2025-12-28
Description (Chinese)
PX4 Drone Autopilot是PX4 Autopilot开源的一个 PX4 无人机自动驾驶仪。 PX4 Drone Autopilot 1.16.0及之前版本存在安全漏洞,该漏洞源于文件src/modules/mavlink/mavlink_log_handler.cpp中函数MavlinkLogHandler::state_listing/MavlinkLogHandler::log_entry_from_id存在栈缓冲区溢出。
Description (English)
PX4 Drone Autopilot is a PX4 drone autopilot at the PX4 Autopilot source. PX4 Drone Autopilot 1.16.0 and previous versions contain a security loophole, which stems from the spilling out of the slc/modules/mavlink/mavlink log handler.cpp, unit function MavlinkLoghandler: state liting/MavlinkLogHandler: log entry from id.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
PX4 Autopilot
Published
2025-12-28
Last Modified
2026-02-24
References
https://github.com/PX4/PX4-Autopilot/pull/26124/commits/338595edd1d235efd885fd5e9f45e7f9dcf4013d https://vuldb.com/?id.338527 https://vuldb.com/?ctiid.338527 https://github.com/PX4/PX4-Autopilot/issues/26118 https://vuldb.com/?submit.717323 https://access.redhat.com/security/cve/cve-2025-15150
Patch
https://github.com/PX4/PX4-Autopilot/releases
Share on: