Vulnerabilities

CVE-2025-15150 - PX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_from_id stack-based overflow

2025-12-28 0 views admin

CVE ID : CVE-2025-15150 Published : Dec. 28, 2025, 7:15 p.m. | 25 minutes ago Description : A vulnerability was found in PX4 PX4-Autopilot up to 1.16.0. Affected by this issue is the function MavlinkLogHandler::state_listing/MavlinkLogHandler::log_entry_from_id of the file src/modules/mavlink/mavlink_log_handler.cpp. The manipulation results in stack-based buffer overflow. The attack is only possible with local access. The patch is identified as 338595edd1d235efd885fd5e9f45e7f9dcf4013d. It is best practice to apply a patch to resolve this issue. Severity: 5.3 | MEDIUM Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

CVE ID

CVE-2025-15150

Severity

MEDIUM

Published

Dec. 28, 2025

Attack Vector: local

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2025-15150medium

CVE-2025-15150 - PX4 PX4-Autopilot mavlink_log_handler.cpp log_entry_from_id stack-based overflow

CVE Details

🏷️ Tags

More from Vulnerabilities

CVE-2025-15148 - CmsEasy Backend Template Management template_admin.php savetemp_action code inje...

CVE-2025-15146 - SohuTV CacheCloud UserManageController.java doUserList cross site scripting

CVE-2025-15149 - rawchen ecms Add New Product updateProductServlet.java updateProductServlet cros...

CVE-2025-15142 - 9786 phpok3w show.php sql injection

Trending

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

CVE-2025-43939: Dell Unity OS Command Injection (High)

Google disputes false claims of massive Gmail data breach

Microsoft: DNS outage impacts Azure and Microsoft 365 services

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting