CVE-2025-64096 | NASA CryptoLib up to 1.4.1 CCSDS Space Data Link Security Protocol crypto_key_mgmt.c Crypto_Key_update length stack-based overflow

October 30, 2025 Yanac

A vulnerability, which was classified as critical, has been found in NASA CryptoLib up to 1.4.1. The affected element is the function Crypto_Key_update of the file crypto_key_mgmt.c of the component CCSDS Space Data Link Security Protocol Handler. The manipulation of the argument length leads to stack-based buffer overflow.

This vulnerability is documented as CVE-2025-64096. The attack can be initiated remotely. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More