184 matches found
CVE-2025-46675
In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking...
CVE-2025-46673
NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use, possibly leading to a bypass of the Space Data Link Security protocol SDLS...
CVE-2025-46674
NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work in Progress not intended for use during flight, potentially leading to a keystream oracle...
CVE-2025-46672
NASA CryptoLib before 1.3.2 does not check the OTAR crypto function returned status, potentially leading to spacecraft hijacking...
CVE-2025-46672
NASA CryptoLib before 1.3.2 does not check the OTAR crypto function returned status, potentially leading to spacecraft hijacking...
CVE-2025-46673
NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use, possibly leading to a bypass of the Space Data Link Security protocol SDLS...
CVE-2025-46675
In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking...
CVE-2025-46673
NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use, possibly leading to a bypass of the Space Data Link Security protocol SDLS...
CVE-2025-46675
In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking...
CVE-2025-46674
NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work in Progress not intended for use during flight, potentially leading to a keystream oracle...
CVE-2025-46672
NASA CryptoLib before 1.3.2 does not check the OTAR crypto function returned status, potentially leading to spacecraft hijacking...
CVE-2025-46674
NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work in Progress not intended for use during flight, potentially leading to a keystream oracle...
CVE-2025-46675
In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking...
CVE-2025-46673
NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use, possibly leading to a bypass of the Space Data Link Security protocol SDLS...
CVE-2025-46672
Summary : CVE-2025-46672 affects NASA CryptoLib up to v1.3.1 (before 1.3.2). The root cause is that the OTAR crypto function return status is not checked, which could allow incorrect handling of OTAR results and potentially enable spacecraft hijacking. Impact : the issue is described as a securit...
CryptoLib 安全漏洞
CryptoLib is a NASA open source application. It is used to provide a software-only solution using the CCSDS space data link security protocol. A security vulnerability exists in CryptoLib versions prior to 1.3.2 that stems from the use of unfinished extensions that could lead to keystream...
CryptoLib 安全漏洞
CryptoLib is a NASA open source application. It is used to provide a software-only solution using the CCSDS space data link security protocol. A security vulnerability exists in CryptoLib versions prior to 1.3.2 that stems from a failure to check key status and could lead to spacecraft hijacking...
CVE-2025-46673
Summary: CVE-2025-46673 affects NASA CryptoLib prior to 1.3.2. The library does not check whether the SA is in an operational state before use, which could allow bypassing the Space Data Link Security (SDLS) protocol. Affected software: NASA CryptoLib up to version 1.3.1 (pre-1.3.2). Impact (per ...
CVE-2025-46674
CVE-2025-46674 affects NASA CryptoLib prior to 1.3.2. The issue arises from using Extended Procedures that are a Work in Progress and not intended for flight, which could enable a keystream oracle. Public references confirm vulnerability details and link to changes between v1.3.1 and v1.3.2. Repo...
CVE-2025-46675
CVE-2025-46675 affects NASA CryptoLib prior to 1.3.2. The root cause is that the key state is not checked before use, which could enable spacecraft hijacking. Public sources across multiple advisories note the affected versions are before 1.3.2, with remediation to upgrade to 1.3.2 or later; PT S...