PX4-Autopilot — Vulnerabilities & Security Advisories 13

All 13 CVE vulnerabilities found in PX4-Autopilot, with AI-generated Chinese analysis, references, and POCs.

Vendor: PX4

CVE ID	Title	CVSS	Severity	Published
CVE-2026-32743	PX4 Autopilot: Stack-based Buffer Overflow via Oversized Path Input in MAVLink Log Request Handling CWE-121	6.5	Medium	2026-03-18
CVE-2026-32724	PX4 autopilot has a heap Use-After-Free in MavlinkShell::available() via SERIAL_CONTROL Race Condition CWE-416	5.3	Medium	2026-03-13
CVE-2026-32713	PX4 Autopilot MAVLink FTP Session Validation Logic Error Allows Operations on Invalid File Descriptors CWE-670	4.3	Medium	2026-03-13
CVE-2026-32709	PX4 Autopilot MAVLink FTP Unauthenticated Path Traversal (Arbitrary File Read/Write/Delete) CWE-22	5.4	Medium	2026-03-13
CVE-2026-32708	Zenoh uORB Subscriber Allows Arbitrary Stack Allocation (PX4/PX4-Autopilot) CWE-121	7.8	High	2026-03-13
CVE-2026-32707	PX4 autopilot has a stack buffer overflow in tattu_can due to unbounded memcpy in frame assembly loop CWE-121	5.2	Medium	2026-03-13
CVE-2026-32706	PX4 autopilot has a global buffer overflow in crsf_rc via oversized variable-length known packet CWE-120	7.1	High	2026-03-13
CVE-2026-32705	PX4 autopilot BST Device Name Length Can Overflow Driver Buffer CWE-121	6.8	Medium	2026-03-13
CVE-2025-15150	PX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_from_id stack-based overflow CWE-121	5.3	Medium	2025-12-28
CVE-2025-9020	PX4 PX4-Autopilot Mavlink Shell Closing mavlink_receiver.cpp handle_message_serial_control use after free CWE-416	4.5	Medium	2025-08-15
CVE-2025-5640	PX4-Autopilot TRAJECTORY_REPRESENTATION_WAYPOINTS Message mavlink_receiver.cpp stack-based overflow CWE-121	3.3	Low	2025-06-05
CVE-2023-47625	Global Buffer Overflow leading to denial of service in PX4-Autopilot CWE-120	2.9	Low	2023-11-13
CVE-2023-46256	PX4-Autopilot Heap Buffer Overflow Bug CWE-122	4.4	Medium	2023-10-31

All 13 known CVE vulnerabilities affecting PX4-Autopilot with full Chinese analysis, references, and POCs where available.