216.73.217.22

CVE-2025-30356

· Published 01/04/2025 22:15 · Modified 01/04/2025 22:15

Labels: CVE-2025-30356 2025-04-01CVE-2025-30356CWE-191[email protected]

Essential information

Published
01/04/2025 22:15
Modified
01/04/2025 22:15
Author
Creator
CVSS
9.3 CRITICAL (v3) 9.3 CRITICAL (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft running the core Flight System (cFS) and a ground station. In 1.3.3 and earlier, a heap buffer overflow vulnerability persists in the Crypto_TC_ApplySecurity function due to an incomplete validation check on the fl (frame length) field. Although CVE-2025-29912 addressed an underflow issue involving fl, the patch fails to fully prevent unsafe calculations. As a result, an attacker can still craft malicious frames that cause a negative tf_payload_len, which is then interpreted as a large unsigned value, leading to a heap buffer overflow in a memcpy call.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
cryptolib / ccsds space data link security protocol cpe:2.3:a:cryptolib:ccsds_space_data_link_security_protocol:1.3.3:*:*:*:*:*:*:*
cryptolib / ccsds space data link security protocol cpe:2.3:a:cryptolib:ccsds_space_data_link_security_protocol:<1.3.3:*:*:*:*:*:*:*

References