Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
autopilot vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-34125
An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow malicious user to gain access to sensitive information via various nuttx commands.
Dronecode Px4 Drone Autopilot
Yuneec Mantis Q Firmware -
8.8
CVSSv3
CVE-2021-4337
Sixteen XforWooCommerce Add-On Plugins for WordPress are vulnerable to authorization bypass due to a missing capability check on the wp_ajax_svx_ajax_factory function in various versions listed below. This makes it possible for authenticated attackers, with subscriber-level permi...
Xforwoocommerce Xforwoocommerce
Xforwoocommerce Warranties And Returns
Xforwoocommerce Share\\, Print And Pdf Products
Xforwoocommerce Product Loops
Xforwoocommerce Product Filter
Xforwoocommerce Price Commander
Xforwoocommerce Package Quantity
Xforwoocommerce Live Search
Xforwoocommerce Live Product Editor
Xforwoocommerce Improved Sale Badges
Xforwoocommerce Improved Product Options
Xforwoocommerce Floating Cart
Xforwoocommerce Comment And Review Spam Control
Xforwoocommerce Bulk Add To Cart
Xforwoocommerce Autopilot Seo
Xforwoocommerce Add Product Tabs
6.5
CVSSv3
CVE-2022-30189
Windows Autopilot Device Management and Enrollment Client Spoofing Vulnerability
Microsoft Windows 10 20h2
Microsoft Windows 10 21h1
Microsoft Windows 10 21h2
9.8
CVSSv3
CVE-2020-10283
The Micro Air Vehicle Link (MAVLink) protocol presents authentication mechanisms on its version 2.0 however according to its documentation, in order to maintain backwards compatibility, GCS and autopilot negotiate the version via the AUTOPILOT_VERSION message. Since this negotiat...
Dronecode Micro Air Vehicle Link 1.0.0
NA
CVE-2005-3687
cancel_account.php in WHM AutoPilot 2.5.30 and previous versions allows remote malicious users to cancel requests for arbitrary accounts via a modified c parameter.
7.8
CVSSv3
CVE-2023-4706
A privilege escalation vulnerability was reported in Lenovo preloaded devices deployed using Microsoft AutoPilot under a standard user account due to incorrect default privileges.
Lenovo Preload Directory -
NA
CVE-2024-30800
PX4 Autopilot v.1.14 allows an malicious user to fly the drone into no-fly zones by breaching the geofence using flaws in the function.
NA
CVE-2024-30799
An issue in PX4 Autopilot v1.14 and before allows a remote malicious user to execute arbitrary code and cause a denial of service via the Breach Return Point function.
NA
CVE-2024-29460
An issue in PX4 Autopilot v.1.14.0 allows an malicious user to manipulate the flight path allowing for crashes of the drone via the home point location of the mission_block.cpp component.
6.5
CVSSv3
CVE-2020-10558
The driving interface of Tesla Model 3 vehicles in any release prior to 2020.4.10 allows Denial of Service to occur due to improper process separation, which allows malicious users to disable the speedometer, web browser, climate controls, turn signal visual and sounds, navigatio...
Tesla Model 3 Web Interface
4 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »