Vulnerabilities > Nasa
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-04-27 | CVE-2025-46675 | Improper Control of Dynamically-Managed Code Resources vulnerability in Nasa Cryptolib In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking. | 4.2 |
| 2025-04-01 | CVE-2025-30356 | Out-of-bounds Write vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.8 |
| 2025-03-25 | CVE-2025-30216 | Heap-based Buffer Overflow vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.1 |
| 2025-03-17 | CVE-2025-29911 | Out-of-bounds Write vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.8 |
| 2025-03-17 | CVE-2025-29912 | Heap-based Buffer Overflow vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.8 |
| 2025-03-17 | CVE-2025-29913 | Integer Underflow (Wrap or Wraparound) vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.8 |
| 2025-03-17 | CVE-2025-29909 | Unspecified vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 9.8 |
| 2025-03-17 | CVE-2025-29910 | Unspecified vulnerability in Nasa Cryptolib CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. | 7.5 |
| 2024-09-27 | CVE-2024-44910 | Out-of-bounds Read vulnerability in Nasa Cryptolib 1.3.0 NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the AOS subsystem (crypto_aos.c). | 7.5 |
| 2024-09-27 | CVE-2024-44911 | Out-of-bounds Read vulnerability in Nasa Cryptolib 1.3.0 NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the TC subsystem (crypto_tc.c). | 7.5 |