CVE-2026-21898

Name of the Vulnerable Software and Affected Versions CryptoLib versions prior to 1.4.3

Description CryptoLib is a software solution that uses the CCSDS Space Data Link Security Protocol - Extended Procedures (SDLS-EP) to secure communications between a spacecraft and a ground station. Prior to version 1.4.3, the Crypto AOS ProcessSecurity function does not perform valid bounds checking when parsing AOS frame hashes, leading to a potential issue.

Recommendations Versions prior to 1.4.3 should be updated to version 1.4.3 or later.