Vulnerabilities (CVE)

Filtered by vendor Nasa Goddard Space Flight Center Subscribe
Filtered by product Common Data Format
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-2850 1 Nasa Goddard Space Flight Center 1 Common Data Format 2024-11-21 9.3 HIGH N/A
Multiple buffer overflows in NASA Common Data Format (CDF) allow context-dependent attackers to execute arbitrary code, as demonstrated using (1) an array index error in the ReadAEDRList64 function, and other errors in the (2) SearchForRecord_r_64, (3) LastRecord64, (4) CDFsel64, and other unspecified functions.
CVE-2008-2080 1 Nasa Goddard Space Flight Center 1 Common Data Format 2024-11-21 7.5 HIGH N/A
Stack-based buffer overflow in the Read32s_64 function in src/lib/cdfread64.c in the NASA Goddard Space Flight Center Common Data Format (CDF) library before 3.2.1 allows context-dependent attackers to execute arbitrary code via a .cdf file with crafted length tags.