Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition.
The following versions of NASA Core Flight System (cFS) Health & Safety (HS) Application are affected:
Core Flight System (cFS) Health & Safety (HS) Application
Vendor
Equipment
NASA
NASA Core Flight System (cFS) Health & Safety (HS) Application
NULL Pointer Dereference
Critical Infrastructure Sectors: Transportation Systems
Countries/Areas Deployed: Worldwide
Company Headquarters Location: United States
A vulnerability exists in the Health & Safety (HS) application of NASA's Core Flight System (cFS). The flaw allows the application to crash via segmentation fault when processing a routine Housekeeping Telemetry request, leading to denial of service.
NASA Core Flight System (cFS) Health & Safety (HS) Application
Read the full advisory on CISA →