CVE-2026-5476

**Name of the Vulnerable Software and Affected Versions NASA cFS versions up to 7.0.0

Description A flaw exists in NASA cFS up to version 7.0.0 on 32-bit systems. The issue resides within the CFE TBL ValidateCodecLoadSize function, located in the file cfe/modules/tbl/fsw/src/cfe tbl passthru codec.c, and results in an integer overflow. Exploitation is considered difficult and requires a high level of complexity.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.