CVE advisoryCRITICAL
CVE-2025-67268
gpsd NMEA2000 Packet Handling Heap Out-of-Bounds Write Vulnerability
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability exists in gpsd's handling of NMEA2000 packets, allowing an attacker to cause memory corruption via crafted network packets. This could lead to denial of service or potentially arbitrary code execution, impacting systems that rely on gpsd for location data.