Dronecode Px4 Drone Autopilot — known CVE vulnerabilities
Every CVE whose affected-product data names Dronecode Px4 Drone Autopilot, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (23)
CVE-2026-26741 — CVSS 8.1 (high): PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual…
CVE-2026-26742 — CVSS 8.1 (high): PX4 Autopilot versions 1.12.x through 1.15.x contain a protection mechanism failure in the "Re-arm Grace Period" logic. The system…
CVE-2024-40427 — CVSS 7.9 (high): Stack Buffer Overflow in PX4-Autopilot v1.14.3, which allows attackers to execute commands to exploit this vulnerability and cause the…
CVE-2026-32708 — CVSS 7.8 (high): PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, the Zenoh uORB subscriber allocates a stack VLA directly from…
CVE-2021-34125 — CVSS 7.5 (high): An issue discovered in Yuneec Mantis Q and PX4-Autopilot v 1.11.3 and below allow attacker to gain access to sensitive information via…
CVE-2021-46896 — CVSS 7.5 (high): Buffer Overflow vulnerability in PX4-Autopilot allows attackers to cause a denial of service via handler function handling msgid 332.
CVE-2024-38952 — CVSS 7.5 (high): PX4-Autopilot v1.14.3 was discovered to contain a buffer overflow via the topic_name parameter at /logger/logged_topics.cpp.
CVE-2026-32706 — CVSS 7.1 (high): PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, The crsf_rc parser accepts an oversized variable-length known…
CVE-2026-32705 — CVSS 6.8 (medium): PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, the BST telemetry probe writes a string terminator using a…
CVE-2024-29460 — CVSS 6.6 (medium): An issue in PX4 Autopilot v.1.14.0 allows an attacker to manipulate the flight path allowing for crashes of the drone via the home point…
CVE-2024-38951 — CVSS 6.5 (medium): A buffer overflow in PX4-Autopilot v1.12.3 allows attackers to cause a Denial of Service (DoS) via a crafted MavLink message.
CVE-2026-32743 — CVSS 6.5 (medium): PX4 is an open-source autopilot stack for drones and unmanned vehicles. Versions 1.17.0-rc2 and below are vulnerable to Stack-based Buffer…
CVE-2024-30800 — CVSS 5.6 (medium): PX4 Autopilot v.1.14 allows an attacker to fly the drone into no-fly zones by breaching the geofence using flaws in the function.
CVE-2026-32709 — CVSS 5.4 (medium): PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, An unauthenticated path traversal vulnerability in the PX4…
CVE-2026-32724 — CVSS 5.3 (medium): PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc1, a heap-use-after-free is detected in the MavlinkShell::available…
CVE-2025-15150 — CVSS 5.3 (medium): A vulnerability was found in PX4 PX4-Autopilot up to 1.16.0. Affected by this issue is the function MavlinkLogHandler::state_listing/Mavlink…
CVE-2026-32707 — CVSS 5.2 (medium): PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, tattu_can contains an unbounded memcpy in its multi-frame…
CVE-2024-30799 — CVSS 4.4 (medium): An issue in PX4 Autopilot v1.14 and before allows a remote attacker to execute arbitrary code and cause a denial of service via the Breach…
CVE-2023-46256 — CVSS 4.4 (medium): PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow…
CVE-2026-32713 — CVSS 4.3 (medium): PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, A logic error in the PX4 Autopilot MAVLink FTP session…
CVE-2024-24255 — CVSS 4.2 (medium): A Race Condition discovered in geofence.cpp and mission_feasibility_checker.cpp in PX4 Autopilot 1.14 and earlier allows attackers to send…
CVE-2024-24254 — CVSS 4.2 (medium): PX4 Autopilot 1.14 and earlier, due to the lack of synchronization mechanism for loading geofence data, has a Race Condition vulnerability…
CVE-2023-47625 — CVSS 2.9 (low): PX4 autopilot is a flight control solution for drones. In affected versions a global buffer overflow vulnerability exists in the…