exploitDog

CVE-2024-24255

Опубликовано: 06 фев. 2024

Источник: nvd

CVSS3: 4.2

EPSS Низкий

Описание

A Race Condition discovered in geofence.cpp and mission_feasibility_checker.cpp in PX4 Autopilot 1.14 and earlier allows attackers to send drones on unintended missions.

Ссылки

https://github.com/Drone-Lab/PX4-Autopilot/blob/report-the-faliure-of-precheck/report-the-faliure-of-precheck.md
Exploit
Third Party Advisory
https://github.com/Drone-Lab/PX4-Autopilot/blob/report-the-faliure-of-precheck/report-the-faliure-of-precheck.md
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:dronecode:px4_drone_autopilot:*:*:*:*:*:*:*:*

Версия до 1.14.0 (включая)

EPSS

Процентиль: 12%

0.00041

Низкий

4.2 Medium

CVSS3

Дефекты

CWE-362

CWE-362

Связанные уязвимости

GHSA-pxh3-hmj4-xhjv

CVSS3: 4.2

github

около 2 лет назад

A Race Condition discovered in geofence.cpp and mission_feasibility_checker.cpp in PX4 Autopilot 1.14 and earlier allows attackers to send drones on unintended missions.

EPSS

Процентиль: 12%

0.00041

Низкий

4.2 Medium

CVSS3

Дефекты

CWE-362

CWE-362