Vulnerabilities > Dronecode > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-31 | CVE-2023-46256 | Out-of-bounds Write vulnerability in Dronecode PX4 Drone Autopilot PX4-Autopilot provides PX4 flight control solution for drones. | 9.8 |
| 2020-08-20 | CVE-2020-10283 | Unspecified vulnerability in Dronecode Micro AIR Vehicle Link 1.0.0 The Micro Air Vehicle Link (MAVLink) protocol presents authentication mechanisms on its version 2.0 however according to its documentation, in order to maintain backwards compatibility, GCS and autopilot negotiate the version via the AUTOPILOT_VERSION message. | 9.8 |
| 2020-07-03 | CVE-2020-10282 | Missing Authentication for Critical Function vulnerability in Dronecode Micro AIR Vehicle Link 1.0.0 The Micro Air Vehicle Link (MAVLink) protocol presents no authentication mechanism on its version 1.0 (nor authorization) whichs leads to a variety of attacks including identity spoofing, unauthorized access, PITM attacks and more. | 9.8 |