📦 Cryptolib
by Nasa
🔍 What is Cryptolib?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
A heap buffer overflow vulnerability in CryptoLib's SDLS-EP implementation allows attackers to craft malicious frames that cause negative payload lengths to be interpreted as large unsigned values, le...
A heap overflow vulnerability in CryptoLib's TM protocol processing allows attackers to trigger arbitrary memory overwrites by sending specially crafted packets with invalid Secondary Header Length va...
A critical heap buffer overflow vulnerability in CryptoLib versions 1.3.3 and prior allows attackers to cause denial of service or potentially execute arbitrary code by sending maliciously crafted AOS...
A critical heap buffer overflow vulnerability in CryptoLib versions 1.3.3 and prior allows attackers to cause denial of service or potentially execute arbitrary code by sending maliciously crafted tel...
A heap buffer overflow vulnerability in CryptoLib's Crypto_TC_ApplySecurity() function allows attackers to craft malicious Telecommand frames that cause out-of-bounds memory writes. This can lead to d...
A stack-based buffer overflow vulnerability in CryptoLib's Crypto_Key_update() function allows remote attackers to trigger memory corruption by sending specially crafted TLV packets with spoofed lengt...
CVE-2025-59534 is a command injection vulnerability in CryptoLib's initialize_kerberos_keytab_file_login() function that allows attackers to execute arbitrary shell commands by injecting malicious inp...
A heap buffer overflow vulnerability in NASA CryptoLib versions 1.4.0 and prior allows attackers to corrupt heap memory by sending specially crafted telecommand frames. This affects spacecraft communi...
NASA CryptoLib v1.3.0 contains an out-of-bounds read vulnerability in the TM subsystem (crypto_tm.c) that could allow attackers to read sensitive memory contents or cause denial of service. This affec...
CVE-2024-44910 is an out-of-bounds read vulnerability in NASA CryptoLib v1.3.0's AOS subsystem that could allow attackers to read sensitive memory contents or cause denial of service. This affects any...
NASA CryptoLib versions before 1.3.2 fail to verify the operational state of Security Associations (SAs) before use, potentially allowing attackers to bypass the Space Data Link Security (SDLS) protoc...