Vulnerabilities > CVE-2025-30356 - Out-of-bounds Write vulnerability in Nasa Cryptolib

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

nasa

CWE-787

critical

NVD

Published: 2025-04-01

Updated: 2025-04-29

Summary

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. In 1.3.3 and earlier, a heap buffer overflow vulnerability persists in the Crypto_TC_ApplySecurity function due to an incomplete validation check on the fl (frame length) field. Although CVE-2025-29912 addressed an underflow issue involving fl, the patch fails to fully prevent unsafe calculations. As a result, an attacker can still craft malicious frames that cause a negative tf_payload_len, which is then interpreted as a large unsigned value, leading to a heap buffer overflow in a memcpy call.

Vulnerable Configurations

Part	Description	Count
Application	Nasa Nasa Cryptolib 1.0.0 Nasa Cryptolib 1.0.1 Nasa Cryptolib 1.0.2 Nasa Cryptolib 1.0.3 Nasa Cryptolib 1.1.0 Nasa Cryptolib 1.1.1 Nasa Cryptolib 1.2.0 Nasa Cryptolib 1.2.1 Nasa Cryptolib 1.2.2 Nasa Cryptolib 1.2.3 Nasa Cryptolib 1.3.1	11

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

References