Browse all 3 CVE security advisories affecting nasa-jpl. AI-powered Chinese analysis, POCs, and references for each vulnerability.
NASA喷气推进实验室(JPL)是航天技术研发机构,其开源项目多涉及航天控制系统和数据处理。历史漏洞以远程代码执行和权限绕过为主,多因输入验证不足导致。2021年某深空网络组件曾曝出未授权访问漏洞,影响任务数据安全。其系统通常采用最小权限原则和多层防御,但老旧代码维护困难仍是挑战。
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-61910 | NASA ION-DTN BPv7 4.1.3s Uncontrolled Memory Allocation that leads to Denial-of-Service — ION-DTNCWE-789 | 7.5 | High | 2025-10-07 |
| CVE-2024-54129 | Improper Initialization of `imc` Scheme Leading to `SIGABRT` in ION-DTN BPv7 — ION-DTNCWE-665 | 5.3 | - | 2024-12-05 |
| CVE-2024-54130 | Segmentation Fault in `forwardBundle` Function of ION-DTN BPv7 When Destination EID is `dtn:none` (public) — ION-DTNCWE-476 | 7.5 | - | 2024-12-05 |
This page lists every published CVE security advisory associated with nasa-jpl. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.