Today > | 9 High | 16 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-54130

Dec. 5, 2024, 4:15 p.m.

Tags

security-advisories@github.com
CWE-476
2024-12-05
CVE-2024-54130

Product(s) Impacted

NASA’s Interplanetary Overlay Network (ION) - ION-DTN BPv7 software

  • 4.1.3

Description

The NASA’s Interplanetary Overlay Network (ION) is an implementation of Delay/Disruption Tolerant Networking (DTN). A segmentation fault occurs with ION-DTN BPv7 software version 4.1.3 when a bundle with a Destination Endpoint ID (EID) set to dtn:none is received. This causes the node to become unresponsive to incoming bundles, leading to a Denial of Service (DoS) condition. This vulnerability is fixed in 4.1.3s.

Weaknesses

CWE-476
NULL Pointer Dereference

A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit.

CWE ID: 476

Date

Published: Dec. 5, 2024, 4:15 p.m.

Last Modified: Dec. 5, 2024, 4:15 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

security-advisories@github.com

References

https://github.com/ security-advisories@github.com