← Back

CVE-2025-46675

nvd nist
Published: Apr 27, 2025Modified: May 12, 2025

JSON object

Loading...
4.2
Vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L
Exploitability: 1.6 / Impact: 2.5
Source: NVD

Description

In NASA CryptoLib before 1.3.2, the key state is not checked before use, potentially leading to spacecraft hijacking.

Affected (1)

Products: Nasa: Cryptolib
Nasa
1 product
Cryptolib
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Cryptolib
Before 1.3.2

Related CWEs

CWE-913
Improper Control of Dynamically-Managed Code Resources
The product does not properly restrict reading from or writing to dynamically-managed code resources such as variables, objects, classes, attributes, functions, or executable instructions or statements.

References (5)

Source: cve@mitre.org
Patch
Source: cve@mitre.org
Issue TrackingPatch
Source: cve@mitre.org
Issue TrackingPatch
Source: cve@mitre.org
ExploitThird Party Advisory
Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0
ExploitThird Party Advisory

Timeline

No history available yet.