cbcvebase.

Windriver Vxworks vulnerabilities

38 known vulnerabilities affecting windriver/vxworks.

Total CVEs
38
CISA KEV
0
Public exploits
2
Exploited in wild
2
Severity breakdown
CRITICAL12HIGH18MEDIUM8

Vulnerabilities

Page 2 of 2
CVE-2020-28895P3HIGHCVSS 7.3≥ 6.9, < 6.9.4.12v6.9.4.122021-02-03
CVE-2020-28895 [HIGH] CWE-190 CVE-2020-28895: In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's si In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.
nvd
CVE-2013-0711P3HIGHCVSS 7.8v6.5v6.6+3 more2013-03-20
CVE-2013-0711 [HIGH] CWE-20 CVE-2013-0711: IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to cause a IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to cause a denial of service (daemon outage) via a crafted authentication request.
nvd
CVE-2019-12264P3HIGHCVSS 7.1v6.6v6.7+4 more2019-08-05
CVE-2019-12264 [HIGH] CWE-88 CVE-2019-12264: Wind River VxWorks 6.6, 6.7, 6.8, 6.9.3, 6.9.4, and Vx7 has Incorrect Access Control in IPv4 assignm Wind River VxWorks 6.6, 6.7, 6.8, 6.9.3, 6.9.4, and Vx7 has Incorrect Access Control in IPv4 assignment by the ipdhcpc DHCP client component.
nvd
CVE-2020-11440P3HIGHCVSS 7.5≥ 5.5, < 7.0v7.02020-07-23
CVE-2020-11440 [HIGH] CVE-2020-11440: httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the w httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the web root.
nvd
CVE-2010-2967P3HIGHCVSS 7.8≤ 6.8v5+3 more2010-08-05
CVE-2010-2967 [HIGH] CWE-310 CVE-2010-2967: The loginDefaultEncrypt algorithm in loginLib in Wind River VxWorks before 6.9 does not properly sup The loginDefaultEncrypt algorithm in loginLib in Wind River VxWorks before 6.9 does not properly support a large set of distinct possible passwords, which makes it easier for remote attackers to obtain access via a (1) telnet, (2) rlogin, or (3) FTP session.
nvd
CVE-2022-23937P3HIGHCVSS 7.5v6.9v7.02022-03-29
CVE-2022-23937 [HIGH] CWE-125 CVE-2022-23937: In Wind River VxWorks 6.9 and 7, a specific crafted packet may lead to an out-of-bounds read during In Wind River VxWorks 6.9 and 7, a specific crafted packet may lead to an out-of-bounds read during an IKE initial exchange scenario.
nvd
CVE-2023-51787P3HIGHCVSS 7.5v72024-02-15
CVE-2023-51787 [HIGH] CWE-200 CVE-2023-51787: An issue was discovered in Wind River VxWorks 7 22.09 and 23.03. If a VxWorks task or POSIX thread t An issue was discovered in Wind River VxWorks 7 22.09 and 23.03. If a VxWorks task or POSIX thread that uses OpenSSL exits, limited per-task memory is not freed, resulting in a memory leak.
nvd
CVE-2010-2966P3HIGHCVSS 7.8≤ 6.8v5+3 more2010-08-05
CVE-2010-2966 [HIGH] CWE-255 CVE-2010-2966: The INCLUDE_SECURITY functionality in Wind River VxWorks 6.x, 5.x, and earlier uses the LOGIN_USER_N The INCLUDE_SECURITY functionality in Wind River VxWorks 6.x, 5.x, and earlier uses the LOGIN_USER_NAME and LOGIN_USER_PASSWORD (aka LOGIN_PASSWORD) parameters to create hardcoded credentials, which makes it easier for remote attackers to obtain access via a (1) telnet, (2) rlogin, or (3) FTP session.
nvd
CVE-2022-38767P4HIGHCVSS 7.5≥ 6.9, < 6.9.4.12v6.9.4.12+1 more2022-11-25
CVE-2022-38767 [HIGH] CVE-2022-38767: An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet s An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure.
nvd
CVE-2015-3963P4MEDIUMCVSS 5.8≥ 6.5, ≤ 6.6≥ 6.7, < 6.7.1.1+6 more2015-08-04
CVE-2015-3963 [MEDIUM] CWE-330 CVE-2015-3963: Wind River VxWorks before 5.5.1, 6.5.x through 6.7.x before 6.7.1.1, 6.8.x before 6.8.3, 6.9.x befor Wind River VxWorks before 5.5.1, 6.5.x through 6.7.x before 6.7.1.1, 6.8.x before 6.8.3, 6.9.x before 6.9.4.4, and 7.x before 7 ipnet_coreip 1.2.2.0, as used on Schneider Electric SAGE RTU devices before J2 and other devices, does not properly generate TCP initial sequence number (ISN) values, which makes it easier for remote attackers to spoof TCP se
nvd
CVE-2020-10664P4HIGHCVSS 7.5v6.8.32020-04-27
CVE-2020-10664 [HIGH] CWE-476 CVE-2020-10664: The IGMP component in VxWorks 6.8.3 IPNET CVE patches created in 2019 has a NULL Pointer Dereference The IGMP component in VxWorks 6.8.3 IPNET CVE patches created in 2019 has a NULL Pointer Dereference.
nvd
CVE-2010-2968P4HIGHCVSS 7.8≤ 6.8v5+3 more2010-08-05
CVE-2010-2968 [HIGH] CWE-264 CVE-2010-2968: The FTP daemon in Wind River VxWorks does not close the TCP connection after a number of failed logi The FTP daemon in Wind River VxWorks does not close the TCP connection after a number of failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.
nvd
CVE-2021-43268P4MEDIUMCVSS 6.5≥ 6.9, ≤ 7.02021-11-24
CVE-2021-43268 [MEDIUM] CWE-415 CVE-2021-43268: An issue was discovered in VxWorks 6.9 through 7. In the IKE component, a specifically crafted packe An issue was discovered in VxWorks 6.9 through 7. In the IKE component, a specifically crafted packet may lead to reading beyond the end of a buffer, or a double free.
nvd
CVE-2013-0712P4MEDIUMCVSS 6.8v6.5v6.6+3 more2013-03-20
CVE-2013-0712 [MEDIUM] CWE-20 CVE-2013-0712: IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote authenticated users t IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote authenticated users to cause a denial of service (daemon outage) via a crafted packet.
nvd
CVE-2013-0713P4MEDIUMCVSS 6.8v6.5v6.6+3 more2013-03-20
CVE-2013-0713 [MEDIUM] CWE-20 CVE-2013-0713: IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote authenticated users t IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote authenticated users to cause a denial of service (daemon outage) via a crafted pty request.
nvd
CVE-2021-29997P4MEDIUMCVSS 5.3≥ 7.0, < 21.032021-04-13
CVE-2021-29997 [MEDIUM] CWE-125 CVE-2021-29997: An issue was discovered in Wind River VxWorks 7 before 21.03. A specially crafted packet may lead to An issue was discovered in Wind River VxWorks 7 before 21.03. A specially crafted packet may lead to buffer over-read on IKE.
nvd
CVE-2013-0716P4MEDIUMCVSS 5.0v6.5v6.6+3 more2013-03-20
CVE-2013-0716 [MEDIUM] CWE-20 CVE-2013-0716: The web server in Wind River VxWorks 5.5 through 6.9 allows remote attackers to cause a denial of se The web server in Wind River VxWorks 5.5 through 6.9 allows remote attackers to cause a denial of service (daemon crash) via a crafted URI.
nvd
CVE-2013-0715P4MEDIUMCVSS 4.0v6.5v6.6+3 more2013-03-20
CVE-2013-0715 [MEDIUM] CWE-20 CVE-2013-0715: The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to caus The WebCLI component in Wind River VxWorks 5.5 through 6.9 allows remote authenticated users to cause a denial of service (CLI session crash) via a crafted command string.
nvd
Windriver Vxworks vulnerabilities | cvebase