Vulnerability Details CVE-2025-46672
NASA CryptoLib before 1.3.2 does not check the OTAR crypto function returned status, potentially leading to spacecraft hijacking.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 17.4%
CVSS Severity
CVSS v3 Score 3.5
References
Products affected by CVE-2025-46672
-
cpe:2.3:a:nasa:cryptolib:1.0.0
-
cpe:2.3:a:nasa:cryptolib:1.0.1
-
cpe:2.3:a:nasa:cryptolib:1.0.2
-
cpe:2.3:a:nasa:cryptolib:1.0.3
-
cpe:2.3:a:nasa:cryptolib:1.1.0
-
cpe:2.3:a:nasa:cryptolib:1.1.1
-
cpe:2.3:a:nasa:cryptolib:1.2.0
-
cpe:2.3:a:nasa:cryptolib:1.2.1
-
cpe:2.3:a:nasa:cryptolib:1.2.2
-
cpe:2.3:a:nasa:cryptolib:1.2.3
-
cpe:2.3:a:nasa:cryptolib:1.3.0
-
cpe:2.3:a:nasa:cryptolib:1.3.1