CVE-2024-35059

Vulnerability

Overview

The vulnerability resides in the NASA AIT-Core v2.5.2 software suite, where the use of Python's Pickle library for deserialization is performed without proper sanitization [1]. Pickle is inherently unsafe when handling untrusted data because it can execute arbitrary Python code during unpickling [3]. This flaw is classified as CVE-2024-35059 and is one of several code execution vulnerabilities discovered in the same version [1].

Attack

Vector

An attacker with local access to a system running AIT-Core can craft a malicious Pickle payload and deliver it to the application. The attack does not require network access or authentication beyond the local user context; it leverages any component of AIT-Core that deserializes Pickle data from a file, database, or inter-process communication [1][3]. Since the input is not validated, the malicious payload triggers arbitrary code execution upon deserialization.

Impact

Successful exploitation allows the attacker to execute arbitrary Python commands with the privileges of the AIT-Core process [1][3]. This can lead to full compromise of the local system, including data exfiltration, installation of backdoors, or lateral movement within the mission-critical ground data environment [1]. The issue is rated with a CVSS score reflecting high severity due to the ease of exploitation and potential for complete control.

Mitigation

As of May 2024, no patch has been announced for this specific vulnerability [3]. The official advisory recommends not using Pickle with untrusted data and suggests migrating to safer serialization formats such as JSON or using cryptographic signatures to verify data integrity [1]. Users should monitor the AIT-Core repository [2] for updates and apply any future fixes promptly.