CVE-2019-12255
published 2019-08-09CVE-2019-12255: Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow.
Affected
29 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| belden | garrettcom_magnum_dx940e_firmware | <= 1.0.1_y7 | — |
| belden | hirschmann_hios | <= 07.0.07 | — |
| belden | hirschmann_hios | <= 07.5.01 | — |
| belden | hirschmann_hios | <= 07.2.04 | — |
| belden | hirschmann_hios | <= 05.3.06 | — |
| netapp | e-series_santricity_os_controller | 8.00 – 8.40.50.00 | — |
| siemens | power_meter_9410_firmware | < 2.2.1 | 2.2.1 |
| siemens | ruggedcom_win7000_firmware | < bs5.2.461.17 | bs5.2.461.17 |
| siemens | ruggedcom_win7018_firmware | < bs5.2.461.17 | bs5.2.461.17 |
| siemens | ruggedcom_win7025_firmware | < bs5.2.461.17 | bs5.2.461.17 |
| siemens | ruggedcom_win7200_firmware | < bs5.2.461.17 | bs5.2.461.17 |
| siemens | siprotec_5_firmware | < 7.91 | 7.91 |
| sonicwall | sonicos | — | — |
| sonicwall | sonicos | — | — |
| sonicwall | sonicos | — | — |
| sonicwall | sonicos | 5.9.0.0 – 5.9.0.7 | — |
| sonicwall | sonicos | 5.9.1.0. – 5.9.1.12 | — |
| sonicwall | sonicos | 6.2.0.0 – 6.2.3.1 | — |
| sonicwall | sonicos | 6.2.4.0 – 6.2.4.3 | — |
| sonicwall | sonicos | 6.2.5.0 – 6.2.5.3 | — |
| sonicwall | sonicos | 6.2.6.0 – 6.2.6.1 | — |
| sonicwall | sonicos | 6.2.7.0 – 6.2.7.4 | — |
| sonicwall | sonicos | 6.2.9.0 – 6.2.9.2 | — |
| sonicwall | sonicos | 6.5.0.0 – 6.5.0.3 | — |
| sonicwall | sonicos | 6.5.1.0 – 6.5.1.4 | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck9.8CRITICAL