CVE-2024-22519

HIGH

OpenDroneID OSM <3.5.1 - SSRF

Title source: llm

An issue discovered in OpenDroneID OSM 3.5.1 allows attackers to impersonate other drones via transmission of crafted data packets.

Core 1

Core References

Exploit, Third Party Advisory

CVSS v3 8.2

EPSS 0.0007

EPSS Percentile 21.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

CWE

CWE-290

Status published

Products (1)

sorenfriis/opendroneid_osm 3.5.1

Published Feb 06, 2024

Tracked Since Feb 18, 2026