HIGH🇬🇧 English

CVE-2025-25374

CVSS 7.5v3.1pub. 2025-03-25upd. 2026-04-30

In NASA cFS (Core Flight System) Aquila, it is possible to put the onboard software in a state that will prevent the launch of any external application, causing a platform denial of service.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Nasa Core Flight System

    APP
    Nasa
    6.7.0
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2025-25373CRITICAL9.8PL ✓ten sam produkt

NASA cFS Aquila — błędne uprawnienia w module zarządzania pamięcią umożliwiają RCE

CVE-2025-25372HIGH7.5ten sam produkt

NASA cFS (Core Flight System) Aquila is vulnerable to segmentation fault via sending a malicious telecommand t...

CVE-2025-25371HIGH7.5ten sam produkt

NASA cFS (Core Flight System) Aquila is vulnerable to path traversal in the OSAL module, allowing the override...

CVE-2026-5475MEDIUM5.1ten sam produkt

A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFE_SB_TransmitMsg of the fi...

CVE-2026-5474MEDIUM5.3ten sam produkt

A vulnerability was found in NASA cFS up to 7.0.0. This affects the function CFE_MSG_GetSize of the file apps/...