Vulnerable Assets Library
A searchable database of maritime OT equipment with known vulnerabilities — covering navigation systems, engine automation, power management, and vessel control CBS from major marine vendors. Search by vendor, product family, or CVE ID to check whether equipment on your vessel has documented vulnerabilities requiring attention or patch management action.
Searchable by vendor
CVE referenced
Marine OT vendors
Continuously updated
Audit Level: Tactical
Records optimised: 30.06.2026 17:00 UTC
CVE-2025-67268 — Marine OT Device: n/a
Published: 2026-01-02 | Updated: 2026-06-30
N/A 0gpsd before commit dc966aa contains a heap-based out-of-bounds write vulnerability in the drivers/driver_nmea2000.c file. The hnd_129540 function, which handles NMEA2000 PGN 129540 (GNSS Satellites in View) packets, fails to validate the user-supplied satellite count against the size of the skyview array (184 elements). This allows an attacker to write beyond the bounds of the array by providing a satellite count up to 255, leading to memory corruption, Denial of Service (DoS), and potentially arbitrary code execution.
CVSS VECTOR: N/A
Get new CVE entries like these in your inbox weekly.
Subscribe →
Disclaimer & Methodology
The Marine OT Vulnerable Assets Library is a curated repository of security advisories identified through automated heuristic filtering. Users should verify hardware revisions with manufacturers before patching.