Low severity3.3NVD Advisory· Published Jun 5, 2025· Updated Apr 15, 2026

CVE-2025-5640

Description

A vulnerability was found in PX4-Autopilot 1.12.3. It has been classified as problematic. This affects the function MavlinkReceiver::handle_message_trajectory_representation_waypoints of the file mavlink_receiver.cpp of the component TRAJECTORY_REPRESENTATION_WAYPOINTS Message Handler. The manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/PX4/PX4-Autopilot/issues/24915nvd
github.com/PX4/PX4-Autopilot/issues/24915nvd
vuldb.comnvd
vuldb.comnvd
vuldb.comnvd

News mentions

No linked articles in our index yet.

cvss	0.214
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000