CVE-2025-46674 Information

Description

NASA CryptoLib before 1.3.2 uses Extended Procedures that are a Work in Progress (not intended for use during flight) potentially leading to a keystream oracle.

Reference

https://github.com/nasa/CryptoLib/compare/v1.3.1…v1.3.2 https://github.com/nasa/CryptoLib/pull/365 https://securitybynature.fr/post/hacking-cryptolib/