Vulnerabilities > Nasa > Cryptolib > 1.3.0

DATE CVE VULNERABILITY TITLE RISK
2025-04-27 CVE-2025-46672 Unchecked Return Value vulnerability in Nasa Cryptolib
NASA CryptoLib before 1.3.2 does not check the OTAR crypto function returned status, potentially leading to spacecraft hijacking.
network
low complexity
nasa CWE-252
8.8
8.8
2025-04-27 CVE-2025-46673 Improper Control of Dynamically-Managed Code Resources vulnerability in Nasa Cryptolib
NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use, possibly leading to a bypass of the Space Data Link Security protocol (SDLS).
network
low complexity
nasa CWE-913
critical
 9.9
9.9
2025-04-27 CVE-2025-46674 Unspecified vulnerability in Nasa Cryptolib
NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work in Progress (not intended for use during flight), potentially leading to a keystream oracle.
network
low complexity
nasa
critical
 9.9
9.9
2024-09-27 CVE-2024-44910 Out-of-bounds Read vulnerability in Nasa Cryptolib 1.3.0
NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the AOS subsystem (crypto_aos.c).
network
low complexity
nasa CWE-125
7.5
7.5
2024-09-27 CVE-2024-44911 Out-of-bounds Read vulnerability in Nasa Cryptolib 1.3.0
NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the TC subsystem (crypto_tc.c).
network
low complexity
nasa CWE-125
7.5
7.5
2024-09-27 CVE-2024-44912 Out-of-bounds Read vulnerability in Nasa Cryptolib 1.3.0
NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the TM subsystem (crypto_tm.c).
network
low complexity
nasa CWE-125
7.5
7.5