CVE-2020-35198
published 2021-05-12CVE-2020-35198: An issue was discovered in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by…
PriorityP347critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.44%
82.3th percentile
An issue was discovered in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| oracle | communications_eagle | — | — |
| oracle | communications_eagle | 46.8.0 – 46.8.2 | — |
| oracle | communications_eagle | 46.9.1 – 46.9.3 | — |
| windriver | vxworks | — | — |
| windriver | vxworks | >= 6.9 < 6.9.4.12 | 6.9.4.12 |
| windriver | vxworks | >= 7.0 < 21.03 | 21.03 |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_oracle9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
CISA ICS
Hitachi Energy Relion 670, 650 Series and SAM600-IO Product
cisa_ics·2025-06-05·CVSS 7.3
[HIGH] Hitachi Energy Relion 670, 650 Series and SAM600-IO Product
ICS Advisory
##
Hitachi Energy Relion 670, 650 Series and SAM600-IO Product
Release DateJune 05, 2025
Alert CodeICSA-25-155-02
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Hitachi Energy
- Equipment: Relion 670, Relion 650, SAM600-IO
- Vulnerabilities: Integer Overflow or Wraparound
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities could allow an attacker to cause memory corruption on the products.
## 3. TECHNICAL DETAILS
## 3.1 AFFECTED PRODUCTS
Hitachi Energy reports that the following products are affected:
- Relion 670/650/SAM600-IO series: Version 2.2.5 revisions up to 2.
CISA ICS
Siemens SCALANCE X-200, X-200IRT, and X-300 Switch Families BadAlloc Vulnerabilities
cisa_ics·2023-04-13
Siemens SCALANCE X-200, X-200IRT, and X-300 Switch Families BadAlloc Vulnerabilities
ICS Advisory
##
Siemens SCALANCE X-200, X-200IRT, and X-300 Switch Families BadAlloc Vulnerabilities
Release DateApril 13, 2023
Alert CodeICSA-23-103-13
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Siemens
- Equipment: SCALANCE X-200, X-200IRT, and X-300 Switch Families
- Vulnerabilities: Integer Overflow or Wraparound
## 2. RISK EVALUATION
Successful exploitation of these vulnerabilities
Oracle
Oracle Oracle Communications Risk Matrix: Measurements (VxWorks) — CVE-2020-35198
vendor_oracle·2022-04-15·CVSS 9.8
CVE-2020-35198 [CRITICAL] Oracle Oracle Communications Risk Matrix: Measurements (VxWorks) — CVE-2020-35198
Oracle Oracle Communications Risk Matrix: Measurements (VxWorks) vulnerability
CVE: CVE-2020-35198
CVSS: 9.8
Protocol: HTTP
Remote exploit: Yes
Affected versions: Network
Advisory: cpuapr2022 (APR 2022)
CISA ICS
Multiple RTOS (Update E)
cisa_ics·2021-11-30
Multiple RTOS (Update E)
## Archived Content In an effort to keep CISA.gov current, the archive contains outdated information that may not reflect current policy or programs.
ICS Advisory
##
Multiple RTOS (Update E)
Last RevisedApril 19, 2022
Alert CodeICSA-21-119-04
## 1. EXECUTIVE SUMMARY
- CVSS v3 9.8
- ATTENTION: Exploitable remotely/low attack complexity
- Vendors: Multiple
- Equipment: Multiple
- Vulnerabilities: Integer Overflow or Wraparound
CISA is aware of a public report, known as “BadAlloc” that details vulnerabilities found in multiple real-time operating systems (RTOS) and supporting libraries. CISA is issuing this advisory to provide early notice of the reported vulnerabilities and identify baseline mitigations for reducing risks to these and oth
GHSA
GHSA-jv4r-hc9x-r99x: An issue was discovered in Wind River VxWorks 7
ghsa_unreviewed·2022-05-24
CVE-2020-35198 [CRITICAL] CWE-190 GHSA-jv4r-hc9x-r99x: An issue was discovered in Wind River VxWorks 7
An issue was discovered in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2020-35198https://support2.windriver.com/index.php?page=security-noticeshttps://www.oracle.com/security-alerts/cpuapr2022.htmlhttps://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2020-35198https://support2.windriver.com/index.php?page=security-noticeshttps://www.oracle.com/security-alerts/cpuapr2022.html
2021-05-12
Published