Race Condition Vulnerability in Geofence and Mission Feasibility Checker of PX4 Autopilot 1.14 and Earlier

Race Condition Vulnerability in Geofence and Mission Feasibility Checker of PX4 Autopilot 1.14 and Earlier

CVE-2024-24254 · MEDIUM Severity

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

PX4 Autopilot 1.14 and earlier, due to the lack of synchronization mechanism for loading geofence data, has a Race Condition vulnerability in the geofence.cpp and mission_feasibility_checker.cpp. This will result in the drone uploading overlapping geofences and mission routes.

Learn more about our Web Application Penetration Testing UK.