CVE-2023-46256

Опубликовано: 31 окт. 2023

Источник: nvd

CVSS3: 4.4

CVSS3: 9.8

EPSS Низкий

Описание

PX4-Autopilot provides PX4 flight control solution for drones. In versions 1.14.0-rc1 and prior, PX4-Autopilot has a heap buffer overflow vulnerability in the parser function due to the absence of parserbuf_index value checking. A malfunction of the sensor device can cause a heap buffer overflow with leading unexpected drone behavior. Malicious applications can exploit the vulnerability even if device sensor malfunction does not occur. Up to the maximum value of an unsigned int, bytes sized data can be written to the heap memory area. As of time of publication, no fixed version is available.

Ссылки

https://github.com/PX4/PX4-Autopilot/blob/main/src/drivers/distance_sensor/lightware_laser_serial/parser.cpp#L87
Product
https://github.com/PX4/PX4-Autopilot/security/advisories/GHSA-5hvv-q2r5-rppw
Exploit
Vendor Advisory
https://github.com/PX4/PX4-Autopilot/blob/main/src/drivers/distance_sensor/lightware_laser_serial/parser.cpp#L87
Product
https://github.com/PX4/PX4-Autopilot/security/advisories/GHSA-5hvv-q2r5-rppw
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:dronecode:px4_drone_autopilot:*:*:*:*:*:*:*:*

Версия до 1.13.3 (включая)

cpe:2.3:a:dronecode:px4_drone_autopilot:1.14.0:beta1:*:*:*:*:*:*

cpe:2.3:a:dronecode:px4_drone_autopilot:1.14.0:beta2:*:*:*:*:*:*

cpe:2.3:a:dronecode:px4_drone_autopilot:1.14.0:rc1:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00304

Низкий

4.4 Medium

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-120

CWE-787

EPSS

Процентиль: 53%

0.00304

Низкий

4.4 Medium

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-120

CWE-787