Home > Vulnerability Database > CVE-2025-67268

Mend.io Vulnerability Database

CVE-2025-67268

Date: January 1, 2026

gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2000.c file. The hnd_129540 function, which handles NMEA2000 PGN 129540 (GNSS Satellites in View) packets, fails to validate the user-supplied satellite count against the size of the skyview array (184 elements). This allows an attacker to write beyond the bounds of the array by providing a satellite count up to 255, leading to memory corruption, Denial of Service (DoS), and potentially arbitrary code execution.

Severity Score

9.8

Related Resources (5)

Url: https://github.com/ntpsec/gpsd/commit/dc966aa74c075d0a6535811d98628625cbfbe3f4

Url: https://github.com/ntpsec/gpsd/blob/master/drivers/driver_nmea2000.c

Url: https://github.com/Jaenact/gspd_cve/blob/main/CVE-2025-67268/README.md

Url: https://nvd.nist.gov/vuln/detail/CVE-2025-67268

Url: https://www.mend.io/vulnerability-database/CVE-2025-67268

Severity Score

9.8

Weakness Type (CWE)

Heap-based Buffer Overflow

CWE-122

CVSS v3.1

Base Score:	9.8
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2025-67268

Date: January 1, 2026

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?