Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
windriver vxworks vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-38346
An issue exists in Wind River VxWorks 6.9 and 7. The function ``tarExtract`` implements TAR file extraction and thereby also processes files within an archive that have relative or absolute file paths. A developer using the "tarExtract" function may expect that the func...
Windriver Vxworks 6.9
Windriver Vxworks 7.0
NA
CVE-2022-38767
An issue exists in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure.
Windriver Vxworks
Windriver Vxworks 6.9.4.12
Windriver Vxworks 7.0
5
CVSSv2
CVE-2022-23937
In Wind River VxWorks 6.9 and 7, a specific crafted packet may lead to an out-of-bounds read during an IKE initial exchange scenario.
Windriver Vxworks 6.9
Windriver Vxworks 7.0
6.4
CVSSv2
CVE-2021-43268
An issue exists in VxWorks 6.9 up to and including 7. In the IKE component, a specifically crafted packet may lead to reading beyond the end of a buffer, or a double free.
Windriver Vxworks
7.5
CVSSv2
CVE-2020-35198
An issue exists in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to mem...
Windriver Vxworks
Windriver Vxworks 6.9.4.12
Oracle Communications Eagle
Oracle Communications Eagle 46.7.0
5
CVSSv2
CVE-2021-29997
An issue exists in Wind River VxWorks 7 prior to 21.03. A specially crafted packet may lead to buffer over-read on IKE.
Windriver Vxworks
7.5
CVSSv2
CVE-2021-29998
An issue exists in Wind River VxWorks prior to 6.5. There is a possible heap overflow in dhcp client.
Windriver Vxworks
Siemens Ruggedcom Win Subscriber Station Firmware
Siemens Scalance X200-4 P Irt Firmware
Siemens Scalance X201-3p Irt Firmware
Siemens Scalance X201-3p Irt Pro Firmware
Siemens Scalance X202-2 Irt Firmware
Siemens Scalance X202-2p Irt Firmware
Siemens Scalance X202-2p Irt Pro Firmware
Siemens Scalance X204 Irt Firmware
Siemens Scalance X204 Irt Pro Firmware
Siemens Scalance X204-2 Firmware
Siemens Scalance X204-2fm Firmware
Siemens Scalance X204-2ld Firmware
Siemens Scalance X204-2ld Ts Firmware
Siemens Scalance X204-2ts Firmware
Siemens Scalance X206-1 Firmware
Siemens Scalance X206-1ld Firmware
Siemens Scalance X208 Firmware
Siemens Scalance X208 Pro Firmware
Siemens Scalance X212-2 Firmware
Siemens Scalance X212-2ld Firmware
Siemens Scalance X216 Firmware
7.5
CVSSv2
CVE-2016-20009
A DNS client stack-based buffer overflow in ipdnsc_decode_name() affects Wind River VxWorks 6.5 up to and including 7. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Windriver Vxworks
Siemens Sgt-100 Firmware
Siemens Sgt-200 Firmware
Siemens Sgt-300 Firmware
Siemens Sgt-400 Firmware
Siemens Sgt-a20 Firmware
Siemens Sgt-a35 Firmware
Siemens Sgt-a65 Firmware
7.5
CVSSv2
CVE-2020-28895
In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.
Windriver Vxworks
Windriver Vxworks 6.9.4.12
Oracle Communications Eagle
Oracle Communications Eagle 46.7.0
5
CVSSv2
CVE-2020-11440
httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the web root.
Windriver Vxworks
Windriver Vxworks 7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »