4 matches found
CVE-2026-5474
A vulnerability was found in NASA cFS up to 7.0.0. This affects the function CFEMSGGetSize of the file apps/tolab/fsw/src/tolabpassthruencode.c of the component CCSDS Packet Header Handler. Performing a manipulation results in heap-based buffer overflow. The attacker must have access to the local...
CVE-2026-5474
CVE-2026-5474 affects NASA cFS up to 7.0.0. The vulnerability is in CFE_MSG_GetSize (file apps/to_lab/fsw/src/to_lab_passthru_encode.c, CCSDS Packet Header Handler) and results in a heap-based buffer overflow when manipulated. Exploitation requires local network access. Multiple sources (NVD, Red...
Core Flight System 安全漏洞
Core Flight System cFS is a generic flight software architecture framework open source by NASA. It is used for flagship spacecraft, manned spacecraft, cube satellites, and Raspberry Pi devices. Versions of Core Flight System 7.0.0 and earlier contain security vulnerabilities. These vulnerabilitie...
PT-2026-30200
Name of the Vulnerable Software and Affected Versions NASA cFS versions up to 7.0.0 Description A flaw exists in NASA cFS up to version 7.0.0 within the CCSDS Packet Header Handler component. Specifically, the CFE MSG GetSize function in the file apps/to lab/fsw/src/to lab passthru encode.c is...