CVE-2013-0714Improper Input Validation in Vxworks

CWE-20Improper Input Validation3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
9.3%
top 7.23%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Windriver Vxworks
Timeline
PublishedMar 20
Latest updateMay 17

Description

IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to execute arbitrary code or cause a denial of service (daemon hang) via a crafted public-key authentication request.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

NVDwindriver/vxworks5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-vvrj-3rj8-m23h: IPSSH (aka the SSH server) in Wind River VxWorks 62022-05-17
CVEList
CVE-2013-0714: IPSSH (aka the SSH server) in Wind River VxWorks 62013-03-20
CVE-2013-0714 — Improper Input Validation in Vxworks | cvebase