← Zuruck zu CVEs

CVE-2025-70083

HIGH

7.8

Beschreibung

An issue was discovered in OpenSatKit 2.2.1. The DirName field in the telecommand is provided by the ground segment and must be treated as untrusted input. The program copies DirName into the local buffer DirWithSep using strcpy. The size of this buffer is OS_MAX_PATH_LEN. If the length of DirName is greater than or equal to OS_MAX_PATH_LEN, a stack buffer overflow occurs, overwriting adjacent stack memory. The path length check (FileUtil_AppendPathSep) is performed after the strcpy operation, meaning the validation occurs too late and cannot prevent the overflow.

CVE Details

CVSS v3.1 Bewertung7.8

SchweregradHIGH

CVSS VektorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AngriffsvektorLOCAL

KomplexitatLOW

Erforderliche PrivilegienLOW

BenutzerinteraktionNONE

Veroffentlicht2/11/2026

Zuletzt geandert2/17/2026

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

opensatkit:opensatkit

Schwachen (CWE)

CWE-121

Referenzen

https://gist.github.com/jonafk555(cve@mitre.org)

https://github.com/OpenSatKit/OpenSatKit(cve@mitre.org)

https://github.com/OpenSatKit/OpenSatKit/releases/tag/v2.2.1(cve@mitre.org)

https://raw.githubusercontent.com/OpenSatKit/OpenSatKit/master/cfs/apps/filemgr/fsw/src/dir.c(cve@mitre.org)

https://raw.githubusercontent.com/OpenSatKit/OpenSatKit/master/cfs/apps/filemgr/fsw/src/dir.c#:~:text=strcpy%28DirWithSep(cve@mitre.org)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.