IM
IronMonkey Threat Research
‹ Back to ICS Advisories

NASA Core Flight System (cFS) Health & Safety (HS) Application

HIGH
CVSS 7.5
Date 2026-07-16T06:00:00+00:00
Source cisa-csaf
Published by CISA

// Description

Successful exploitation of this vulnerability could allow an attacker to cause a denial-of-service condition.

// Vulnerabilities (1)

CVE ID CVSS Score Severity Description
CVE-2026-15352 7.5 high
A vulnerability exists in the Health & Safety (HS) application of NASA's Core Flight System (cFS). The flaw allows the application to crash via segmentation fault when processing a routine Housekeeping Telemetry request, leading to denial of service.

// Remediations (1)

Mitigation: NASA recommends users update to v7.0.1 (https://github.com/nasa/HS/releases/tag/v7.0.1)
NASA recommends users update to v7.0.1 (https://github.com/nasa/HS/releases/tag/v7.0.1)

// References