Vulnerabilities > Nasa > High

DATE CVE VULNERABILITY TITLE RISK
2024-09-27 CVE-2024-44910 Out-of-bounds Read vulnerability in Nasa Cryptolib 1.3.0
NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the AOS subsystem (crypto_aos.c).
network
low complexity
nasa CWE-125
7.5
2024-09-27 CVE-2024-44911 Out-of-bounds Read vulnerability in Nasa Cryptolib 1.3.0
NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the TC subsystem (crypto_aos.c).
network
low complexity
nasa CWE-125
7.5
2024-09-27 CVE-2024-44912 Out-of-bounds Read vulnerability in Nasa Cryptolib 1.3.0
NASA CryptoLib v1.3.0 was discovered to contain an Out-of-Bounds read via the TM subsystem (crypto_tm.c).
network
low complexity
nasa CWE-125
7.5
2023-10-06 CVE-2023-45282 Unspecified vulnerability in Nasa Openmct
In NASA Open MCT (aka openmct) before 3.1.0, prototype pollution can occur via an import action.
network
low complexity
nasa
7.5
2018-08-01 CVE-2018-3847 Out-of-bounds Write vulnerability in Nasa Cfitsio 3.42
Multiple exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42.
network
low complexity
nasa CWE-787
8.8
2018-04-16 CVE-2018-3849 Out-of-bounds Write vulnerability in multiple products
In the ffghtb function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data.
network
low complexity
nasa fedoraproject CWE-787
8.8
2018-04-16 CVE-2018-3848 Out-of-bounds Write vulnerability in multiple products
In the ffghbn function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data.
network
low complexity
nasa fedoraproject CWE-787
8.8
2018-04-16 CVE-2018-3846 Out-of-bounds Write vulnerability in multiple products
In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data.
network
low complexity
nasa fedoraproject CWE-787
8.8
2018-02-09 CVE-2018-1000048 Deserialization of Untrusted Data vulnerability in Nasa Rtretrievalframework 1.0
NASA RtRetrievalFramework version v1.0 contains a CWE-502 vulnerability in Data retrieval functionality of RtRetrieval framework that can result in remote code execution.
network
low complexity
nasa CWE-502
8.8
2018-02-09 CVE-2018-1000047 Deserialization of Untrusted Data vulnerability in Nasa Kodiak 1.0
NASA Kodiak version v1.0 contains a CWE-502 vulnerability in Kodiak library's data processing function that can result in remote code execution.
network
low complexity
nasa CWE-502
8.8