Buffer overflow in Opensatkit
CVE-2025-70083
An issue was discovered in OpenSatKit 2.2.1. The DirName field in the telecommand is provided by the ground segment and must be treated as untrusted input. The program copies DirName into the local buffer DirWithSep using strcpy. The size…
Vulnerability class: Buffer Overflow
EPSS: 0.002 (9.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Opensatkit — versions 2.2.1
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (Product)
- cve@mitre.org (Release Notes)
- cve@mitre.org (Product)
- cve@mitre.org (Product)
- cve@mitre.org (Third Party Advisory)
Frequently asked questions
- What is CVE-2025-70083?
- CVE-2025-70083 is a high-severity vulnerability in Opensatkit, classified under Stack-based Buffer Overflow. CVSS score: 7.8/10. Published 2026-02-11.
- How severe is CVE-2025-70083?
- High severity. CVSS v3 base score is 7.8 out of 10.