CVE-2025-25371

HighPublic PoC

Published: 25 March 2025

Published

25 March 2025

Modified

30 April 2026

KEV Added

—

Patch

—

CVSS Score 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS Score 0.0071 72.3th percentile

Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-25371 is a high-severity Path Traversal (CWE-22) vulnerability in Nasa Core Flight System. Its CVSS base score is 7.5 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Stored Data Manipulation (T1565.001); ranked in the top 27.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Threat & Defense at a Glance

What attackers do: exploitation maps to Stored Data Manipulation (T1565.001). What defenders deploy: see the NIST 800-53 controls recommended below.

Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-10 Information Input Validation good match

prevent

Directly prevents path traversal exploitation in the OSAL module by validating inputs to block malicious file path sequences like '../'.

SI-2 Flaw Remediation good match

prevent

Remediates the specific path traversal flaw in NASA's cFS Aquila OSAL module through identification, reporting, and correction.

SI-7 Software, Firmware, and Information Integrity good match

detect

Detects unauthorized overrides of arbitrary system files by monitoring and verifying software, firmware, and information integrity.

MITRE ATT&CK Enterprise TechniquesAI

T1565.001 Stored Data Manipulation Impact

Adversaries may insert, delete, or manipulate data at rest in order to influence external outcomes or hide activity, thus threatening the integrity of the data.

attack.mitre.org →

Why these techniques?

Path traversal allowing arbitrary file override directly enables stored data manipulation.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

NVD Description

NASA cFS (Core Flight System) Aquila is vulnerable to path traversal in the OSAL module, allowing the override of any arbitrary file on the system.

Deeper analysisAI

CVE-2025-25371, published on 2025-03-25, is a path traversal vulnerability (CWE-22) affecting the OSAL module in NASA's Core Flight System (cFS) Aquila. This flaw allows attackers to override any arbitrary file on the system. It carries a CVSS v3.1 base score of 7.5, rated as high severity with vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

A remote, unauthenticated attacker can exploit this vulnerability over the network with low attack complexity and without requiring user interaction. Exploitation enables the attacker to override arbitrary files on the system, leading to a high confidentiality impact.

Advisories providing further details, including potential mitigations, are available at https://visionspace.com/nasa-cfs-version-aquila-software-vulnerability-assessment/.