Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

32 matches found

RedhatCVE
RedhatCVEadded 2026/02/12 1:4 a.m.4 views

CVE-2025-70083

An issue was discovered in OpenSatKit 2.2.1. The DirName field in the telecommand is provided by the ground segment and must be treated as untrusted input. The program copies DirName into the local buffer DirWithSep using strcpy. The size of this buffer is OSMAXPATHLEN. If the length of DirName i...

7.8CVSS5.8AI score0.00012EPSS
Exploits0References1
OSV
OSVadded 2026/02/11 6:16 p.m.2 views

CVE-2025-70083

An issue was discovered in OpenSatKit 2.2.1. The DirName field in the telecommand is provided by the ground segment and must be treated as untrusted input. The program copies DirName into the local buffer DirWithSep using strcpy. The size of this buffer is OSMAXPATHLEN. If the length of DirName i...

7.8CVSS5.9AI score
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/02/11 12:0 a.m.2 views

CVE-2025-70083

An issue was discovered in OpenSatKit 2.2.1. The DirName field in the telecommand is provided by the ground segment and must be treated as untrusted input. The program copies DirName into the local buffer DirWithSep using strcpy. The size of this buffer is OSMAXPATHLEN. If the length of DirName i...

5.9AI score0.00012EPSS
Exploits0References6
Vulnrichment
Vulnrichmentadded 2026/02/11 12:0 a.m.1 views

CVE-2025-70083

An issue was discovered in OpenSatKit 2.2.1. The DirName field in the telecommand is provided by the ground segment and must be treated as untrusted input. The program copies DirName into the local buffer DirWithSep using strcpy. The size of this buffer is OSMAXPATHLEN. If the length of DirName i...

5.9AI score0.00012EPSS
Exploits0References5
CVE
CVEadded 2026/02/11 12:0 a.m.11 views

CVE-2025-70083

CVE-2025-70083 affects OpenSatKit 2.2.1. The DirName field from the ground segment is treated as untrusted input. The code copies DirName into a local stack buffer DirWithSep using strcpy, where the destination buffer size is OS_MAX_PATH_LEN. If DirName length is >= OS_MAX_PATH_LEN, this cause...

7.8CVSS5.9AI score0.00012EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2026/02/11 12:0 a.m.4 views

PT-2026-7628

An issue was discovered in OpenSatKit 2.2.1. The DirName field in the telecommand is provided by the ground segment and must be treated as untrusted input. The program copies DirName into the local buffer DirWithSep using strcpy. The size of this buffer is OS MAX PATH LEN. If the length of DirNam...

5.9AI score0.00012EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-24183

Malicious code in bioql PyPI...

8.6CVSS6.5AI score0.0019EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.0 views

EUVD-2023-51438

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00081EPSS
Exploits1References1
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2025-6612

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.15945EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/08/13 9:21 p.m.2 views

CVE-2025-54878

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. A heap buffer overflow vulnerability exists in NASA CryptoLib version...

8.6CVSS7.9AI score0.0019EPSS
Exploits1References1
NVD
NVDadded 2025/08/11 9:15 p.m.5 views

CVE-2025-54878

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. A heap buffer overflow vulnerability exists in NASA CryptoLib version...

8.6CVSS0.0019EPSS
Exploits1References2
CVE
CVEadded 2025/08/11 8:40 p.m.23 views

CVE-2025-54878

CVE-2025-54878 affects NASA CryptoLib (versions ≤ 1.4.0) where the IV setup logic for telecommand frames lacks bounds checking when copying the Initialization Vector into a newly allocated buffer. This heap buffer overflow can be triggered by a crafted telecommand frame, causing heap corruption a...

8.6CVSS7.8AI score0.0019EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2025/08/11 8:40 p.m.5 views

CVE-2025-54878 Heap Buffer Overflow in NASA CryptoLib 1.4.0 `Crypto_TC_Check_IV_Setup`

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. A heap buffer overflow vulnerability exists in NASA CryptoLib version...

8.6CVSS0.0019EPSS
Exploits1References2
OSV
OSVadded 2025/08/11 8:40 p.m.3 views

CVE-2025-54878 Heap Buffer Overflow in NASA CryptoLib 1.4.0 `Crypto_TC_Check_IV_Setup`

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. A heap buffer overflow vulnerability exists in NASA CryptoLib version...

8.6CVSS7.3AI score0.0019EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/08/11 8:40 p.m.3 views

CVE-2025-54878 Heap Buffer Overflow in NASA CryptoLib 1.4.0 `Crypto_TC_Check_IV_Setup`

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. A heap buffer overflow vulnerability exists in NASA CryptoLib version...

8.6CVSS7.8AI score0.0019EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/03/27 12:23 a.m.16 views

CVE-2025-25372

NASA cFS Core Flight System Aquila is vulnerable to segmentation fault via sending a malicious telecommand to the Memory Management Module...

7.5CVSS7.2AI score0.00843EPSS
Exploits1References1
NVD
NVDadded 2025/03/25 9:15 p.m.16 views

CVE-2025-25372

NASA cFS Core Flight System Aquila is vulnerable to segmentation fault via sending a malicious telecommand to the Memory Management Module...

7.5CVSS0.00843EPSS
Exploits1References1
OSV
OSVadded 2025/03/25 9:15 p.m.1 views

CVE-2025-25372

NASA cFS Core Flight System Aquila is vulnerable to segmentation fault via sending a malicious telecommand to the Memory Management Module...

7.5CVSS5.8AI score
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/03/25 12:0 a.m.9 views

CVE-2025-25372

NASA cFS Core Flight System Aquila is vulnerable to segmentation fault via sending a malicious telecommand to the Memory Management Module...

7.1AI score0.00843EPSS
Exploits1References1
CVE
CVEadded 2025/03/25 12:0 a.m.58 views

CVE-2025-25372

CVE-2025-25372 affects NASA cFS (Core Flight System) Aquila. A malicious telecommand can trigger a segmentation fault in the Memory Management Module, potentially causing memory corruption and availability impact. The NVD entry lists CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (base 7.5, HIGH)....

7.5CVSS7.1AI score0.00843EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder