CVE-2024-40427 – A stack buffer overflow vulnerability in PX4-Au... (How to Fix)

📋 TL;DR

A stack buffer overflow vulnerability in PX4-Autopilot v1.14.3 allows attackers to execute arbitrary commands, potentially leading to denial of service or remote code execution. This affects users running vulnerable versions of the PX4 flight stack software for drones and autonomous vehicles.

💻 Affected Systems

Products:

PX4-Autopilot

Versions: v1.14.3 and potentially earlier versions

Operating Systems: Linux-based systems running PX4

Default Config Vulnerable: ⚠️ Yes

Notes: Affects systems using the vulnerable PX4 flight stack components. May impact various drone and autonomous vehicle platforms.

📦 What is this software?

Px4 Drone Autopilot by Dronecode

View all CVEs affecting Px4 Drone Autopilot →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution allowing complete system compromise, potential drone hijacking, or permanent system damage.

🟠

Likely Case

Denial of service causing drone/vehicle system crashes, flight termination, or loss of control.

🟢

If Mitigated

Limited impact with proper network segmentation and access controls, potentially only local denial of service.

🌐 Internet-Facing: MEDIUM - Exploitation requires network access to vulnerable systems, but many drone systems operate on isolated networks.

🏢 Internal Only: HIGH - If exploited internally, could lead to complete system compromise of connected drone/vehicle fleets.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires sending specially crafted commands to vulnerable components. Buffer overflow manipulation needed for code execution.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Fixed in commit e03e0261a1a0c82f545e66a1e3795956c886db71 and later versions

Vendor Advisory: https://github.com/PX4/PX4-Autopilot/security/advisories/GHSA-55wq-2hgm-75m4

Restart Required: Yes

Instructions:

1. Update PX4-Autopilot to latest version or apply commit e03e0261a1a0c82f545e66a1e3795956c886db71
2. Rebuild and redeploy flight stack
3. Restart affected drone/vehicle systems

🔧 Temporary Workarounds

Network Segmentation

all

Isolate drone/vehicle control networks from untrusted networks

Input Validation

all

Implement additional input validation for PX4 command interfaces

🧯 If You Can't Patch

Implement strict network access controls to limit who can communicate with PX4 systems
Monitor for abnormal command patterns and implement rate limiting on command interfaces

🔍 How to Verify

Check if Vulnerable:

Check PX4 version: 'px4 --version' or examine build version in system logs

Check Version:

px4 --version

Verify Fix Applied:

Verify version is newer than v1.14.3 or includes commit e03e0261a1a0c82f545e66a1e3795956c886db71

📡 Detection & Monitoring

Log Indicators:

Stack overflow errors in PX4 logs
Abnormal command sequences
System crashes/restarts

Network Indicators:

Unusual command traffic to PX4 ports
Large payloads sent to command interfaces

SIEM Query:

source="px4.log" AND ("stack overflow" OR "buffer overflow" OR "segmentation fault")

📊 Metadata

CVE ID: CVE-2024-40427

CVSS v3 Score: 7.9 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H

CWE: CWE-120

EPSS Score: 0.04% exploit probability (12.8th percentile)

Published: January 7, 2025

Last Updated: June 20, 2025

🔗 References

https://github.com/PX4/PX4-Autopilot/commit/e03e0261a1a0c82f545e66a1e3795956c886db71 Patch
https://github.com/PX4/PX4-Autopilot/security/advisories/GHSA-55wq-2hgm-75m4 Exploit,Vendor Advisory
https://github.com/PX4/PX4-Autopilot/security/advisories/GHSA-55wq-2hgm-75m4 Exploit,Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-40427, you might also want to check these: