8.1
CVE-2026-32706
- EPSS 0.02%
- Veröffentlicht 13.03.2026 21:17:02
- Zuletzt bearbeitet 17.03.2026 16:16:22
- Quelle security-advisories@github.com
- CVE-Watchlists
- Unerledigt
LoginPX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, The crsf_rc parser accepts an oversized variable-length known packet and copies it into a fixed 64-byte global buffer without a bounds check. In deployments where crsf_rc is enabled on a CRSF serial port, an adjacent/raw-serial attacker can trigger memory corruption and crash PX4. This vulnerability is fixed in 1.17.0-rc2.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Dronecode ≫ Px4 Drone Autopilot Version < 1.17.0
Dronecode ≫ Px4 Drone Autopilot Version1.17.0 Updatealpha1
Dronecode ≫ Px4 Drone Autopilot Version1.17.0 Updatebeta1
Dronecode ≫ Px4 Drone Autopilot Version1.17.0 Updaterc1
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.041 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.1 | 2.8 | 5.2 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
|
| security-advisories@github.com | 7.1 | 2.8 | 4.2 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
|
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.