Lucene search
+L

52 matches found

NVD
NVD
added 3 days ago12 views

CVE-2026-15352

A vulnerability exists in the Health & Safety HS application of NASA's Core Flight System cFS. The flaw allows the application to crash via segmentation fault when processing a routine Housekeeping Telemetry request, leading to denial of service...

8.2CVSS0.00358EPSS
Exploits0References3
EUVD
EUVD
added 3 days ago6 views

EUVD-2026-45022

A vulnerability exists in the Health & Safety HS application of NASA's Core Flight System cFS. The flaw allows the application to crash via segmentation fault when processing a routine Housekeeping Telemetry request, leading to denial of service...

8.2CVSS6.1AI score0.00358EPSS
Exploits0References3
CVE
CVE
added 3 days ago11 views

CVE-2026-15352

CVE-2026-15352 affects NASA’s Core Flight System (cFS) Health & Safety (HS) application. The vulnerability allows a segmentation fault when handling a routine Housekeeping Telemetry request, resulting in a denial-of-service condition. Documents confirm the HS component and cFS are impacted; the i...

8.2CVSS6.1AI score0.00358EPSS
Exploits0References3
OSV
OSV
added 3 days ago3 views

CVE-2026-15352 NASA Core Flight System (cFS) Health & Safety (HS) Application NULL Pointer Dereference

A vulnerability exists in the Health & Safety HS application of NASA's Core Flight System cFS. The flaw allows the application to crash via segmentation fault when processing a routine Housekeeping Telemetry request, leading to denial of service...

8.2CVSS5.3AI score0.00358EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 3 days ago15 views

CVE-2026-15352

A vulnerability exists in the Health & Safety HS application of NASA's Core Flight System cFS. The flaw allows the application to crash via segmentation fault when processing a routine Housekeeping Telemetry request, leading to denial of service...

8.2CVSS6.1AI score0.00358EPSS
Exploits0References4
ICS
ICS
added 3 days ago5 views

NASA Core Flight System (cFS) Health & Safety (HS) Application

ADVISORY SUMMARY Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Minimize network exposure for all...

8.2CVSS6.1AI score0.00358EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2026/04/04 10:54 p.m.7 views

CVE-2026-5476

A vulnerability was identified in NASA cFS up to 7.0.0 on 32-bit. Affected is the function CFETBLValidateCodecLoadSize of the file cfe/modules/tbl/fsw/src/cfetblpassthrucodec.c. The manipulation leads to integer overflow. The complexity of an attack is rather high. The exploitability is told to b...

4.6CVSS5.5AI score0.00209EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/04/04 10:54 p.m.6 views

CVE-2026-5475

A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFESBTransmitMsg of the file cfesbpriv.c of the component CCSDS Header Size Handler. Executing a manipulation can lead to memory corruption. The project was informed of the problem early through an issue report but...

5.5CVSS6AI score0.00218EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/03 6:31 p.m.4 views

EUVD-2026-18813

A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFESBTransmitMsg of the file cfesbpriv.c of the component CCSDS Header Size Handler. Executing a manipulation can lead to memory corruption. The project was informed of the problem early through an issue report but...

5.5CVSS6AI score0.00218EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/03 6:31 p.m.4 views

EUVD-2026-18807

A vulnerability was found in NASA cFS up to 7.0.0. This affects the function CFEMSGGetSize of the file apps/tolab/fsw/src/tolabpassthruencode.c of the component CCSDS Packet Header Handler. Performing a manipulation results in heap-based buffer overflow. The attacker must have access to the local...

6.3CVSS7AI score0.00374EPSS
Exploits0References6
NVD
NVD
added 2026/04/03 5:16 p.m.7 views

CVE-2026-5474

A vulnerability was found in NASA cFS up to 7.0.0. This affects the function CFEMSGGetSize of the file apps/tolab/fsw/src/tolabpassthruencode.c of the component CCSDS Packet Header Handler. Performing a manipulation results in heap-based buffer overflow. The attacker must have access to the local...

8.8CVSS0.00374EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/03 5:15 p.m.2 views

CVE-2026-5475

A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFESBTransmitMsg of the file cfesbpriv.c of the component CCSDS Header Size Handler. Executing a manipulation can lead to memory corruption. The project was informed of the problem early through an issue report but...

5.5CVSS5.7AI score0.00218EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/04/03 5:15 p.m.47 views

CVE-2026-5475 NASA cFS CCSDS Header Size cfe_sb_priv.c CFE_SB_TransmitMsg memory corruption

A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFESBTransmitMsg of the file cfesbpriv.c of the component CCSDS Header Size Handler. Executing a manipulation can lead to memory corruption. The project was informed of the problem early through an issue report but...

5.5CVSS0.00218EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/03 5:0 p.m.5 views

CVE-2026-5474 NASA cFS CCSDS Packet Header to_lab_passthru_encode.c CFE_MSG_GetSize heap-based overflow

A vulnerability was found in NASA cFS up to 7.0.0. This affects the function CFEMSGGetSize of the file apps/tolab/fsw/src/tolabpassthruencode.c of the component CCSDS Packet Header Handler. Performing a manipulation results in heap-based buffer overflow. The attacker must have access to the local...

6.3CVSS7AI score0.00374EPSS
Exploits0References5
CVE
CVE
added 2026/04/03 5:0 p.m.32 views

CVE-2026-5474

CVE-2026-5474 affects NASA cFS up to 7.0.0. The vulnerability is in CFE_MSG_GetSize (file apps/to_lab/fsw/src/to_lab_passthru_encode.c, CCSDS Packet Header Handler) and results in a heap-based buffer overflow when manipulated. Exploitation requires local network access. Multiple sources (NVD, Red...

8.8CVSS7AI score0.00374EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/04/03 5:0 p.m.26 views

CVE-2026-5474 NASA cFS CCSDS Packet Header to_lab_passthru_encode.c CFE_MSG_GetSize heap-based overflow

A vulnerability was found in NASA cFS up to 7.0.0. This affects the function CFEMSGGetSize of the file apps/tolab/fsw/src/tolabpassthruencode.c of the component CCSDS Packet Header Handler. Performing a manipulation results in heap-based buffer overflow. The attacker must have access to the local...

6.3CVSS0.00374EPSS
Exploits0References5
OSV
OSV
added 2026/04/03 4:30 p.m.3 views

CVE-2026-5473 NASA cFS Pickle pickle.load deserialization

A vulnerability has been found in NASA cFS up to 7.0.0. The impacted element is the function pickle.load of the component Pickle Module. Such manipulation leads to deserialization. The attack needs to be performed locally. The attack requires a high level of complexity. The exploitability is...

2CVSS4.9AI score0.00223EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.11 views

Core Flight System 输入验证错误漏洞

Core Flight System cFS is a generic flight software architecture framework open source by NASA, used for flagship spacecraft, manned spacecraft, cube satellites, and Raspberry Pi devices. Versions of Core Flight System cFS 7.0.0 and earlier contained a input validation vulnerability, which was...

4.6CVSS5.9AI score0.00209EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.7 views

PT-2026-30201

A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFE SB TransmitMsg of the file cfe sb priv.c of the component CCSDS Header Size Handler. Executing a manipulation can lead to memory corruption. The project was informed of the problem early through an issue report...

5.5CVSS6AI score0.00218EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.10 views

Core Flight System 缓冲区错误漏洞

Core Flight System cFS is a generic flight software architecture framework open source by NASA. It is used for flagship spacecraft, manned spacecraft, cube satellites, and Raspberry Pi devices. Versions of Core Flight System 7.0.0 and earlier contain a buffer error vulnerability. This vulnerabili...

5.5CVSS6.2AI score0.00218EPSS
Exploits0References5
Rows per page
Query Builder