Description

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. Prier to 1.4.2, there is a missing bounds check in Crypto_Key_update() (crypto_key_mgmt.c) which allows a remote attacker to trigger a stack-based buffer overflow by supplying a TLV packet with a spoofed length field. The function calculates the number of keys from an attacker-controlled field (pdu_len), which may exceed the static array size (kblk[98]), leading to an out-of-bounds write and potential memory corruption. This vulnerability is fixed in 1.4.2.

INFO

Published Date :

2025-10-30T17:09:24.240Z

Last Modified :

2025-10-30T18:16:02.552Z

Source :

GitHub_M
AFFECTED PRODUCTS

The following products are affected by CVE-2025-64096 vulnerability.

Vendors Products
Nasa
  • Cryptolib
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-64096.

URL Resource
https://github.com/nasa/CryptoLib/security/advisories/GHSA-w6c3-pxvr-6m6j cve-icon cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact