CISA

NASA Core Flight System (cFS) Health & Safety (HS) Application

From Cybersecurity and Infrastructure Security Agency ↗

Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition.

The following versions of NASA Core Flight System (cFS) Health & Safety (HS) Application are affected:

Core Flight System (cFS) Health & Safety (HS) Application

Vendor

Equipment

NASA

NASA Core Flight System (cFS) Health & Safety (HS) Application

NULL Pointer Dereference

Critical Infrastructure Sectors: Transportation Systems

Countries/Areas Deployed: Worldwide

Company Headquarters Location: United States

A vulnerability exists in the Health & Safety (HS) application of NASA's Core Flight System (cFS). The flaw allows the application to crash via segmentation fault when processing a routine Housekeeping Telemetry request, leading to denial of service.

NASA Core Flight System (cFS) Health & Safety (HS) Application