Vulnerabilities > Dronecode > Micro AIR Vehicle Link
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-08-20 | CVE-2020-10283 | Unspecified vulnerability in Dronecode Micro AIR Vehicle Link 1.0.0 The Micro Air Vehicle Link (MAVLink) protocol presents authentication mechanisms on its version 2.0 however according to its documentation, in order to maintain backwards compatibility, GCS and autopilot negotiate the version via the AUTOPILOT_VERSION message. | 9.8 |
| 2020-07-03 | CVE-2020-10282 | Missing Authentication for Critical Function vulnerability in Dronecode Micro AIR Vehicle Link 1.0.0 The Micro Air Vehicle Link (MAVLink) protocol presents no authentication mechanism on its version 1.0 (nor authorization) whichs leads to a variety of attacks including identity spoofing, unauthorized access, PITM attacks and more. | 7.5 |
| 2020-07-03 | CVE-2020-10281 | Cleartext Transmission of Sensitive Information vulnerability in Dronecode Micro AIR Vehicle Link This vulnerability applies to the Micro Air Vehicle Link (MAVLink) protocol and allows a remote attacker to gain access to sensitive information provided it has access to the communication medium. | 5.0 |