CVE-2019-12263
published 2019-08-09CVE-2019-12263: Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There is an IPNET security vulnerability: TCP Urgent Pointer state…
high8.1CVSS 3.1
AVNACHPRNUINSUCHIHAH
Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition.
Affected
31 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| belden | garrettcom_magnum_dx940e_firmware | <= 1.0.1_y7 | — |
| belden | hirschmann_hios | <= 07.0.07 | — |
| belden | hirschmann_hios | <= 07.5.01 | — |
| belden | hirschmann_hios | <= 07.2.04 | — |
| belden | hirschmann_hios | <= 05.3.06 | — |
| netapp | e-series_santricity_os_controller | 8.00 – 8.40.50.00 | — |
| siemens | power_meter_9410_firmware | < 2.2.1 | 2.2.1 |
| siemens | ruggedcom_win7000_firmware | < bs5.2.461.17 | bs5.2.461.17 |
| siemens | ruggedcom_win7018_firmware | < bs5.2.461.17 | bs5.2.461.17 |
| siemens | ruggedcom_win7025_firmware | < bs5.2.461.17 | bs5.2.461.17 |
| siemens | ruggedcom_win7200_firmware | < bs5.2.461.17 | bs5.2.461.17 |
| siemens | siprotec_5_firmware | < 7.59 | 7.59 |
| siemens | siprotec_5_firmware | < 7.91 | 7.91 |
| sonicwall | sonicos | — | — |
| sonicwall | sonicos | — | — |
| sonicwall | sonicos | — | — |
| sonicwall | sonicos | 5.9.0.0 – 5.9.0.7 | — |
| sonicwall | sonicos | 5.9.1.0. – 5.9.1.12 | — |
| sonicwall | sonicos | 6.2.0.0 – 6.2.3.1 | — |
| sonicwall | sonicos | 6.2.4.0 – 6.2.4.3 | — |
| sonicwall | sonicos | 6.2.5.0 – 6.2.5.3 | — |
| sonicwall | sonicos | 6.2.6.0 – 6.2.6.1 | — |
| sonicwall | sonicos | 6.2.7.0 – 6.2.7.4 | — |
| sonicwall | sonicos | 6.2.9.0 – 6.2.9.2 | — |
| sonicwall | sonicos | 6.5.0.0 – 6.5.0.3 | — |
CVSS provenance
nvdv3.18.1HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck8.1HIGH