PT-2025-53665 · Px4 · Px4-Autopilot
Fuzz0X
·
Published
2025-12-28
·
Updated
2025-12-31
·
CVE-2025-15150
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
PX4 PX4-Autopilot versions up to 1.16.0
Description
A stack-based buffer overflow exists in the Log Handler module of PX4 PX4-Autopilot. The issue is located in the
MavlinkLogHandler::state listing/MavlinkLogHandler::log entry from id function within the src/modules/mavlink/mavlink log handler.cpp file. This manipulation is only possible with local access.Recommendations
Apply patch 338595edd1d235efd885fd5e9f45e7f9dcf4013d to resolve this issue.
Exploit
Fix
Memory Corruption
Stack Overflow
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Px4-Autopilot