Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
drone vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-46256
PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow vulnerability in the parser function due to the absence of `parserbuf_index` value checking. A malfunction of the sensor device can cause a he...
Dronecode Px4 Drone Autopilot 1.14.0
Dronecode Px4 Drone Autopilot
8.2
CVSSv3
CVE-2024-22520
An issue discovered in Dronetag Drone Scanner 1.5.2 allows malicious users to impersonate other drones via transmission of crafted data packets.
Dronetag Drone Scanner 1.5.2
1 Github repository
4.2
CVSSv3
CVE-2024-24254
PX4 Autopilot 1.14 and previous versions, due to the lack of synchronization mechanism for loading geofence data, has a Race Condition vulnerability in the geofence.cpp and mission_feasibility_checker.cpp. This will result in the drone uploading overlapping geofences and mission ...
Dronecode Px4 Drone Autopilot
4.2
CVSSv3
CVE-2024-24255
A Race Condition discovered in geofence.cpp and mission_feasibility_checker.cpp in PX4 Autopilot 1.14 and previous versions allows malicious users to send drones on unintended missions.
Dronecode Px4 Drone Autopilot
7.5
CVSSv3
CVE-2021-46896
Buffer Overflow vulnerability in PX4-Autopilot allows malicious users to cause a denial of service via handler function handling msgid 332.
Dronecode Px4 Drone Autopilot -
4.3
CVSSv3
CVE-2023-47625
PX4 autopilot is a flight control solution for drones. In affected versions a global buffer overflow vulnerability exists in the CrsfParser_TryParseCrsfPacket function in /src/drivers/rc/crsf_rc/CrsfParser.cpp:298 due to the invalid size check. A malicious user may create an RC p...
Dronecode Px4 Drone Autopilot 1.14.0
6.5
CVSSv3
CVE-2023-47335
Insecure permissions in the setNFZEnable function of Autel Robotics EVO Nano drone v1.6.5 allows malicious users to breach the geo-fence and fly into no-fly zones.
Autelrobotics Evo Nano Drone Firmware 1.6.5
5.7
CVSSv3
CVE-2023-50121
Autel EVO NANO drone flight control firmware version 1.6.5 is vulnerable to denial of service (DoS).
Autelrobotics Evo Nano Drone Firmware 1.6.5
7.5
CVSSv3
CVE-2021-34125
An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow malicious user to gain access to sensitive information via various nuttx commands.
Dronecode Px4 Drone Autopilot
Yuneec Mantis Q Firmware -
8.1
CVSSv3
CVE-2017-3209
The DBPOWER U818A WIFI quadcopter drone provides FTP access over its own local access point, and allows full file permissions to the anonymous user. The DBPower U818A WIFI quadcopter drone runs an FTP server that by default allows anonymous access without a password, and provides...
Dbpower U818a Firmware -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »