Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_from_id stack-based overflow
Vulnerability Description
A vulnerability was found in PX4 PX4-Autopilot up to 1.16.0. Affected by this issue is the function MavlinkLogHandler::state_listing/MavlinkLogHandler::log_entry_from_id of the file src/modules/mavlink/mavlink_log_handler.cpp. The manipulation results in stack-based buffer overflow. The attack is only possible with local access. The patch is identified as 338595edd1d235efd885fd5e9f45e7f9dcf4013d. It is best practice to apply a patch to resolve this issue.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
PX4 Drone Autopilot 安全漏洞
Vulnerability Description
PX4 Drone Autopilot是PX4 Autopilot开源的一个 PX4 无人机自动驾驶仪。 PX4 Drone Autopilot 1.16.0及之前版本存在安全漏洞,该漏洞源于文件src/modules/mavlink/mavlink_log_handler.cpp中函数MavlinkLogHandler::state_listing/MavlinkLogHandler::log_entry_from_id存在栈缓冲区溢出。
CVSS Information
N/A
Vulnerability Type
N/A