CVE-2020-28895
published 2021-02-03CVE-2020-28895: In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc(). As a result, the actual…
PriorityP340high7.3CVSS 3.1
AVNACLPRNUINSUCLILAL
EPSS
1.47%
70.6th percentile
In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oracle | communications_eagle | — | — |
| oracle | communications_eagle | 46.8.0 – 48.6.2 | — |
| oracle | communications_eagle | 46.9.1 – 46.9.3 | — |
| windriver | vxworks | — | — |
| windriver | vxworks | >= 6.9 < 6.9.4.12 | 6.9.4.12 |
CVSS provenance
nvdv3.17.3HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5wmw-m5w7-7m5m: In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc()
ghsa_unreviewed·2022-05-24
CVE-2020-28895 [CRITICAL] CWE-120 GHSA-5wmw-m5w7-7m5m: In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc()
In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.
CISA ICS
Rockwell Automation 1783-NATR
cisa_ics·2025-09-09·CVSS 7.3
[HIGH] Rockwell Automation 1783-NATR
ICS Advisory
##
Rockwell Automation 1783-NATR
Release DateSeptember 09, 2025
Alert CodeICSA-25-252-09
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v4 6.9
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Rockwell Automation
- Equipment: 1783-NATR
- Vulnerability: Use of Platform-Dependent Third Party Components
## 2. RISK EVALUATION
Successful exploitation of this vulnerability could allow an attacker to cause a memory corruption on the product.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
The following versions of Rockwell Automation 1783-NATR are affected:
- 1783-NATR: All versions prior to 1.007
## 3.2 VULNERABILITY OVERVIEW
## 3.2.1 USE OF PLA
CISA ICS
Hitachi Energy Relion 670, 650 Series and SAM600-IO Product
cisa_ics·2025-06-05·CVSS 7.3
[HIGH] Hitachi Energy Relion 670, 650 Series and SAM600-IO Product
ICS Advisory
##
Hitachi Energy Relion 670, 650 Series and SAM600-IO Product
Release DateJune 05, 2025
Alert CodeICSA-25-155-02
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Hitachi Energy
- Equipment: Relion 670, Relion 650, SAM600-IO
- Vulnerabilities: Integer Overflow or Wraparound
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to cause memory corruption on the products.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
Hitachi Energy reports that the following products are affected:
- Relion 670/650/SAM600-IO series: Version 2.2.5 revisions up to 2.
CISA ICS
Siemens SCALANCE X-200, X-200IRT, and X-300 Switch Families BadAlloc Vulnerabilities
cisa_ics·2023-04-13
Siemens SCALANCE X-200, X-200IRT, and X-300 Switch Families BadAlloc Vulnerabilities
ICS Advisory
##
Siemens SCALANCE X-200, X-200IRT, and X-300 Switch Families BadAlloc Vulnerabilities
Release DateApril 13, 2023
Alert CodeICSA-23-103-13
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Siemens
- Equipment: SCALANCE X-200, X-200IRT, and X-300 Switch Families
- Vulnerabilities: Integer Overflow or Wraparound
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities
CISA ICS
Multiple RTOS (Update E)
cisa_ics·2021-11-30
Multiple RTOS (Update E)
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Multiple RTOS (Update E)
Last RevisedApril 19, 2022
Alert CodeICSA-21-119-04
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendors: Multiple
- Equipment: Multiple
- Vulnerabilities: Integer Overflow or Wraparound
CISA is aware of a public report, known as “BadAlloc” that details vulnerabilities found in multiple real-time operating systems (RTOS) and supporting libraries. CISA is issuing this advisory to provide early notice of the reported vulnerabilities and identify baseline mitigations for reducing risks to these and oth
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2020-28895https://support2.windriver.com/index.php?page=defects&on=view&id=V7LIBC-1327https://www.oracle.com/security-alerts/cpuapr2022.htmlhttps://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2020-28895https://support2.windriver.com/index.php?page=defects&on=view&id=V7LIBC-1327https://www.oracle.com/security-alerts/cpuapr2022.html
2021-02-03
Published