| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-1579 | PX4 Autopilot Missing authentication for critical function | PX4 | Autopilot | Critical | 9.8 | 2026-03-31 20:20:07 | Deep Dive |
| CVE-2026-32743 | PX4 Autopilot: Stack-based Buffer Overflow via Oversized Path Input in MAVLink Log Request Handling | PX4 | PX4-Autopilot | Medium | 6.5 | 2026-03-18 23:26:51 | Deep Dive |
| CVE-2026-32724 | PX4 autopilot has a heap Use-After-Free in MavlinkShell::available() via SERIAL_CONTROL Race Condition | PX4 | PX4-Autopilot | Medium | 5.3 | 2026-03-13 21:39:19 | Deep Dive |
| CVE-2026-32713 | PX4 Autopilot MAVLink FTP Session Validation Logic Error Allows Operations on Invalid File Descriptors | PX4 | PX4-Autopilot | Medium | 4.3 | 2026-03-13 21:20:09 | Deep Dive |
| CVE-2026-32709 | PX4 Autopilot MAVLink FTP Unauthenticated Path Traversal (Arbitrary File Read/Write/Delete) | PX4 | PX4-Autopilot | Medium | 5.4 | 2026-03-13 21:19:34 | Deep Dive |
| CVE-2026-32708 | Zenoh uORB Subscriber Allows Arbitrary Stack Allocation (PX4/PX4-Autopilot) | PX4 | PX4-Autopilot | High | 7.8 | 2026-03-13 21:18:53 | Deep Dive |
| CVE-2026-32707 | PX4 autopilot has a stack buffer overflow in tattu_can due to unbounded memcpy in frame assembly loop | PX4 | PX4-Autopilot | Medium | 5.2 | 2026-03-13 21:18:09 | Deep Dive |
| CVE-2026-32706 | PX4 autopilot has a global buffer overflow in crsf_rc via oversized variable-length known packet | PX4 | PX4-Autopilot | High | 7.1 | 2026-03-13 21:17:03 | Deep Dive |
| CVE-2026-32705 | PX4 autopilot BST Device Name Length Can Overflow Driver Buffer | PX4 | PX4-Autopilot | Medium | 6.8 | 2026-03-13 21:15:56 | Deep Dive |
| CVE-2025-15150 | PX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_from_id stack-based overflow | PX4 | PX4-Autopilot | Medium | 5.3 | 2025-12-28 19:02:08 | Deep Dive |
| CVE-2025-9020 | PX4 PX4-Autopilot Mavlink Shell Closing mavlink_receiver.cpp handle_message_serial_control use after free | PX4 | PX4-Autopilot | Medium | 4.5 | 2025-08-15 07:32:07 | Deep Dive |
| CVE-2025-5640 | PX4-Autopilot TRAJECTORY_REPRESENTATION_WAYPOINTS Message mavlink_receiver.cpp stack-based overflow | - | PX4-Autopilot | Low | 3.3 | 2025-06-05 06:00:20 | Deep Dive |
| CVE-2023-47625 | Global Buffer Overflow leading to denial of service in PX4-Autopilot | PX4 | PX4-Autopilot | Low | 2.9 | 2023-11-13 20:40:57 | Deep Dive |
| CVE-2023-46256 | PX4-Autopilot Heap Buffer Overflow Bug | PX4 | PX4-Autopilot | Medium | 4.4 | 2023-10-31 15:29:06 | Deep Dive |
| CVE-2020-10283 | RVD#3317: MAVLink version handshaking allows for an attacker to bypass authentication | PX4 | MAVLink | 超危 | - | 2020-08-20 08:15:13 | Deep Dive |