CVE-2026-5476 | NASA cFS up to 7.0.0 on 32-bit cfe_tbl_passthru_codec.c CFE_TBL_ValidateCodecLoadSize integer overflow (Issue 954)

Inserito da Angelo Barbosa | Apr 3, 2026 | CVE

A vulnerability marked as critical has been reported in NASA cFS up to 7.0.0 on 32-bit. Affected is the function CFE_TBL_ValidateCodecLoadSize of the file cfe/modules/tbl/fsw/src/cfe_tbl_passthru_codec.c. The manipulation leads to integer overflow.

This vulnerability is traded as CVE-2026-5476. Access to the local network is required for this attack to succeed. There is no exploit available.

A fix is planned for the upcoming version milestone of the project.

CVE-2026-5476 | NASA cFS up to 7.0.0 on 32-bit cfe_tbl_passthru_codec.c CFE_TBL_ValidateCodecLoadSize integer overflow (Issue 954)

Post correlati

CVE-2024-28200 | N-able N-central 2023.4/2023.6 User Interface authentication bypass

CVE-2023-51092 | Tenda M3 1.0.0.12(4856) upgrade stack-based overflow

CVE-2025-65885 | Delight Custom Firmware injection

CVE-2025-0228 | code-projects Local Storage Todo App 1.0 /js-todo-app/index.html Add cross site scripting