CVE-2023-51454

Name of the Vulnerable Software and Affected Versions DJI Mavic 3 Pro versions prior to v01.01.0300 DJI Mavic 3 versions prior to v01.00.1200 DJI Mavic 3 Classic versions prior to v01.00.0500 DJI Mavic 3 Enterprise versions prior to v07.01.10.03 DJI Matrice 300 versions prior to v57.00.01.00 DJI Matrice M30 versions prior to v07.01.0022 DJI Mini 3 Pro versions prior to v01.00.0620

Description The issue is related to an Out-of-bounds Write problem affecting the v2 sdk service running on a set of DJI drone devices on port 10000. This could allow an attacker to overwrite a pointer in the process memory through a crafted payload, triggering an unsafe memory write operation in the my tcp receive function implemented in the libv2 sdk.so library. This potentially leads to a memory information leak or arbitrary code execution.

Recommendations For DJI Mavic 3 Pro versions prior to v01.01.0300, update the firmware to v01.01.0300 or later. For DJI Mavic 3 versions prior to v01.00.1200, update the firmware to v01.00.1200 or later. For DJI Mavic 3 Classic versions prior to v01.00.0500, update the firmware to v01.00.0500 or later. For DJI Mavic 3 Enterprise versions prior to v07.01.10.03, update the firmware to v07.01.10.03 or later. For DJI Matrice 300 versions prior to v57.00.01.00, update the firmware to v57.00.01.00 or later. For DJI Matrice M30 versions prior to v07.01.0022, update the firmware to v07.01.0022 or later. For DJI Mini 3 Pro versions prior to v01.00.0620, update the firmware to v01.00.0620 or later. As a temporary workaround, consider restricting access to the v2 sdk service on port 10000 until the firmware is updated.