CVE-2026-32743

< 1.17.0

PX4 is an open-source autopilot stack for drones and unmanned vehicles. Versions 1.17.0-rc2 and below are vulnerable to Stack-base

6.5MEDIUM

CVE-2026-32724

< 1.17.0

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc1, a heap-use-after-free is detected in the MavlinkShell:

5.3MEDIUM

CVE-2026-32713

< 1.17.0

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, A logic error in the PX4 Autopilot MAVLink FTP session

4.3MEDIUM

CVE-2026-32709

< 1.17.0

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, An unauthenticated path traversal vulnerability in the

5.4MEDIUM

CVE-2026-32708

< 1.17.0

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, the Zenoh uORB subscriber allocates a stack VLA direct

7.8HIGH

CVE-2026-32707

< 1.17.0

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, tattu_can contains an unbounded memcpy in its multi-fr

5.2MEDIUM

CVE-2026-32706

< 1.17.0

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, The crsf_rc parser accepts an oversized variable-lengt

7.1HIGH

CVE-2026-32705

< 1.17.0

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, the BST telemetry probe writes a string terminator usi

6.8MEDIUM

CVE-2026-26742

>= 1.12.0 and < 1.16.0

PX4 Autopilot versions 1.12.x through 1.15.x contain a protection mechanism failure in the "Re-arm Grace Period" logic. The system

8.1HIGH

CVE-2026-26741

>= 1.12.0 and < 1.16.0

PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode t

8.1HIGH

CVE-2025-15150

<= 1.16.0

A vulnerability was found in PX4 PX4-Autopilot up to 1.16.0. Affected by this issue is the function MavlinkLogHandler::state_listi

5.3MEDIUM

CVE-2024-40427

< 1.14.3

Stack Buffer Overflow in PX4-Autopilot v1.14.3, which allows attackers to execute commands to exploit this vulnerability and cause

7.9HIGH

CVE-2024-38952

all versions

PX4-Autopilot v1.14.3 was discovered to contain a buffer overflow via the topic_name parameter at /logger/logged_topics.cpp.

7.5HIGH

CVE-2024-38951

all versions

A buffer overflow in PX4-Autopilot v1.12.3 allows attackers to cause a Denial of Service (DoS) via a crafted MavLink message.

6.5MEDIUM

CVE-2024-30800

all versions

PX4 Autopilot v.1.14 allows an attacker to fly the drone into no-fly zones by breaching the geofence using flaws in the function.

5.6MEDIUM

CVE-2024-30799

<= 1.14.0

An issue in PX4 Autopilot v1.14 and before allows a remote attacker to execute arbitrary code and cause a denial of service via th

4.4MEDIUM

CVE-2024-29460

all versions

An issue in PX4 Autopilot v.1.14.0 allows an attacker to manipulate the flight path allowing for crashes of the drone via the home

6.6MEDIUM

CVE-2024-24255

<= 1.14.0

A Race Condition discovered in geofence.cpp and mission_feasibility_checker.cpp in PX4 Autopilot 1.14 and earlier allows attackers

4.2MEDIUM

CVE-2024-24254

<= 1.14.0

PX4 Autopilot 1.14 and earlier, due to the lack of synchronization mechanism for loading geofence data, has a Race Condition vulne

4.2MEDIUM

CVE-2023-47625

all versions

PX4 autopilot is a flight control solution for drones. In affected versions a global buffer overflow vulnerability exists in the C

2.9LOW

CVE-2023-46256

<= 1.13.3

PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer o

4.4MEDIUM

CVE-2021-46896

all versions

Buffer Overflow vulnerability in PX4-Autopilot allows attackers to cause a denial of service via handler function handling msgid 3

7.5HIGH

CVE-2021-34125

<= 1.11.3

An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow attacker to gain access to sensitive information

7.5HIGH