CVE-2025-70083

Source
https://cve.org/CVERecord?id=CVE-2025-70083
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-70083.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2025-70083
Published
2026-02-11T00:00:00Z
Modified
2026-07-08T07:32:20.245858679Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

An issue was discovered in OpenSatKit 2.2.1. The DirName field in the telecommand is provided by the ground segment and must be treated as untrusted input. The program copies DirName into the local buffer DirWithSep using strcpy. The size of this buffer is OSMAXPATHLEN. If the length of DirName is greater than or equal to OSMAXPATHLEN, a stack buffer overflow occurs, overwriting adjacent stack memory. The path length check (FileUtil_AppendPathSep) is performed after the strcpy operation, meaning the validation occurs too late and cannot prevent the overflow.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/70xxx/CVE-2025-70083.json",
    "cna_assigner": "mitre"
}
References

Affected packages

Git / github.com/opensatkit/opensatkit

Affected ranges

Type
GIT
Repo
https://github.com/opensatkit/opensatkit
Events
Database specific
{
    "source": [
        "CPE_STRING",
        "REFERENCES"
    ],
    "cpe": "cpe:2.3:a:opensatkit:opensatkit:2.2.1:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "2.2.1"
        },
        {
            "last_affected": "2.2.1"
        }
    ]
}

Affected versions

2.*
2.2.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-70083.json"