Lucene search
K

185 matches found

RedhatCVE
RedhatCVE
added 2025/04/29 12:17 a.m.20 views

CVE-2025-46675

In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking...

4.2CVSS6.9AI score0.0029EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/29 12:14 a.m.26 views

CVE-2025-46673

NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use, possibly leading to a bypass of the Space Data Link Security protocol SDLS...

9.9CVSS7AI score0.00409EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/29 12:13 a.m.19 views

CVE-2025-46674

NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work in Progress not intended for use during flight, potentially leading to a keystream oracle...

9.9CVSS6.9AI score0.00492EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/29 12:13 a.m.33 views

CVE-2025-46672

NASA CryptoLib before 1.3.2 does not check the OTAR crypto function returned status, potentially leading to spacecraft hijacking...

8.8CVSS6.9AI score0.00434EPSS
Exploits1References1
NVD
NVD
added 2025/04/27 1:15 a.m.26 views

CVE-2025-46675

In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking...

4.2CVSS0.0029EPSS
Exploits1References4
NVD
NVD
added 2025/04/27 1:15 a.m.41 views

CVE-2025-46674

NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work in Progress not intended for use during flight, potentially leading to a keystream oracle...

9.9CVSS0.00492EPSS
Exploits1References3
NVD
NVD
added 2025/04/27 1:15 a.m.35 views

CVE-2025-46673

NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use, possibly leading to a bypass of the Space Data Link Security protocol SDLS...

9.9CVSS0.00409EPSS
Exploits1References5
NVD
NVD
added 2025/04/27 1:15 a.m.56 views

CVE-2025-46672

NASA CryptoLib before 1.3.2 does not check the OTAR crypto function returned status, potentially leading to spacecraft hijacking...

8.8CVSS0.00434EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/04/27 12:0 a.m.7 views

CVE-2025-46675

In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking...

3.5CVSS4AI score0.0029EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/04/27 12:0 a.m.30 views

CVE-2025-46675

In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking...

3.5CVSS0.0029EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/04/27 12:0 a.m.7 views

CVE-2025-46674

NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work in Progress not intended for use during flight, potentially leading to a keystream oracle...

3.5CVSS3.9AI score0.00492EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/04/27 12:0 a.m.6 views

PT-2025-17971 · Nasa · Nasa Cryptolib

Name of the Vulnerable Software and Affected Versions: NASA CryptoLib versions prior to 1.3.2 Description: The issue arises from NASA CryptoLib using Extended Procedures that are a Work in Progress, not intended for use during flight, potentially leading to a keystream oracle. Recommendations: Fo...

9.9CVSS6.3AI score0.00492EPSS
Exploits1References12
CNNVD
CNNVD
added 2025/04/27 12:0 a.m.4 views

CryptoLib 安全漏洞

CryptoLib is a NASA open source application. It is used to provide a software-only solution using the CCSDS space data link security protocol. A security vulnerability exists in CryptoLib versions prior to 1.3.2 that stems from a failure to check key status and could lead to spacecraft hijacking...

4.2CVSS6.4AI score0.0029EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/04/27 12:0 a.m.6 views

CryptoLib 安全漏洞

CryptoLib is a NASA open source application. It is used to provide a software-only solution using the CCSDS space data link security protocol. A security vulnerability exists in CryptoLib versions prior to 1.3.2, which stems from a failure to check the return state of the OTAR cryptographic...

8.8CVSS6.5AI score0.00434EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/04/27 12:0 a.m.6 views

PT-2025-17969 · Nasa · Nasa Cryptolib

Name of the Vulnerable Software and Affected Versions: NASA CryptoLib versions prior to 1.3.2 Description: The issue is related to the OTAR crypto function in NASA CryptoLib, where the returned status is not checked, potentially leading to spacecraft hijacking. Recommendations: For NASA CryptoLib...

8.8CVSS6.3AI score0.00434EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2025/04/27 12:0 a.m.11 views

CVE-2025-46673

NASA CryptoLib before 1.3.2 does not check whether the SA is in an operational state before use, possibly leading to a bypass of the Space Data Link Security protocol SDLS...

4.9CVSS6.9AI score0.00409EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/04/27 12:0 a.m.5 views

PT-2025-17972 · Nasa · Nasa Cryptolib

Name of the Vulnerable Software and Affected Versions: NASA CryptoLib versions prior to 1.3.2 Description: The issue is related to the key state not being checked before use in NASA CryptoLib, potentially leading to spacecraft hijacking. Recommendations: For NASA CryptoLib versions prior to 1.3.2...

4.2CVSS6.3AI score0.0029EPSS
Exploits1References13
CVE
CVE
added 2025/04/27 12:0 a.m.62 views

CVE-2025-46672

Summary : CVE-2025-46672 affects NASA CryptoLib up to v1.3.1 (before 1.3.2). The root cause is that the OTAR crypto function return status is not checked, which could allow incorrect handling of OTAR results and potentially enable spacecraft hijacking. Impact : the issue is described as a securit...

8.8CVSS4.1AI score0.00434EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2025/04/27 12:0 a.m.71 views

CVE-2025-46675

CVE-2025-46675 affects NASA CryptoLib prior to 1.3.2. The root cause is that the key state is not checked before use, which could enable spacecraft hijacking. Public sources across multiple advisories note the affected versions are before 1.3.2, with remediation to upgrade to 1.3.2 or later; PT S...

4.2CVSS4.1AI score0.0029EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/27 12:0 a.m.11 views

CVE-2025-46672

NASA CryptoLib before 1.3.2 does not check the OTAR crypto function returned status, potentially leading to spacecraft hijacking...

3.5CVSS6.9AI score0.00434EPSS
Exploits1References3
Rows per page
Query Builder