Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
windriver vxworks 5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-2966
The INCLUDE_SECURITY functionality in Wind River VxWorks 6.x, 5.x, and previous versions uses the LOGIN_USER_NAME and LOGIN_USER_PASSWORD (aka LOGIN_PASSWORD) parameters to create hardcoded credentials, which makes it easier for remote malicious users to obtain access via a (1) t...
Windriver Vxworks 6
Windriver Vxworks 5
Windriver Vxworks 6.4
Windriver Vxworks
Windriver Vxworks 5.5
NA
CVE-2010-2967
The loginDefaultEncrypt algorithm in loginLib in Wind River VxWorks prior to 6.9 does not properly support a large set of distinct possible passwords, which makes it easier for remote malicious users to obtain access via a (1) telnet, (2) rlogin, or (3) FTP session.
Windriver Vxworks 6
Windriver Vxworks 5
Windriver Vxworks 6.4
Windriver Vxworks
Windriver Vxworks 5.5
NA
CVE-2010-2968
The FTP daemon in Wind River VxWorks does not close the TCP connection after a number of failed login attempts, which makes it easier for remote malicious users to obtain access via a brute-force attack.
Windriver Vxworks 6
Windriver Vxworks 5
Windriver Vxworks 6.4
Windriver Vxworks
Windriver Vxworks 5.5
NA
CVE-2008-2476
The IPv6 Neighbor Discovery Protocol (NDP) implementation in (1) FreeBSD 6.3 up to and including 7.1, (2) OpenBSD 4.2 and 4.3, (3) NetBSD, (4) Force10 FTOS before E7.7.1.1, (5) Juniper JUNOS, and (6) Wind River VxWorks 5.x up to and including 6.4 does not validate the origin of N...
Force10 Ftos
Freebsd Freebsd 6.3
Windriver Vxworks 5
Netbsd Netbsd
Juniper Jnos
Openbsd Openbsd 4.2
Windriver Vxworks 5.5
Freebsd Freebsd 7.1
Openbsd Openbsd 4.3
Windriver Vxworks
7.5
CVSSv3
CVE-2019-12259
Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and vx7 has an array index error in the IGMPv3 client component. There is an IPNET security vulnerability: DoS via NULL dereference in IGMP parsing.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7200 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens 9410 Power Meter Firmware
Siemens 9810 Power Meter Firmware
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
1 Article
NA
CVE-2010-2965
The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and previous versions, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote malicious users to read or modify arbitrary memory locations, perform fu...
Rockwellautomation 1756-enbt/a Firmware 3.2.6
Rockwellautomation 1756-enbt/a Firmware 3.6.1
Windriver Vxworks
1 Github repository
9.8
CVSSv3
CVE-2019-12260
Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 2 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion caused by a malformed TCP AO option.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Netapp E-series Santricity Os Controller
Siemens Power Meter 9410 Firmware
Siemens Power Meter 9810 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7200 Firmware
Oracle Communications Eagle
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
1 Github repository
1 Article
9.8
CVSSv3
CVE-2019-12261
Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 3 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect() to a remote host.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Netapp E-series Santricity Os Controller
Siemens Power Meter 9410 Firmware
Siemens Power Meter 9810 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7200 Firmware
Oracle Communications Eagle
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
1 Article
8.1
CVSSv3
CVE-2019-12263
Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Netapp E-series Santricity Os Controller
Siemens Power Meter 9410 Firmware
Siemens Power Meter 9810 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7200 Firmware
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
1 Article
5.3
CVSSv3
CVE-2019-12265
Wind River VxWorks 6.5, 6.6, 6.7, 6.8, 6.9.3 and 6.9.4 has a Memory Leak in the IGMPv3 client component. There is an IPNET security vulnerability: IGMP Information leak via IGMPv3 specific membership report.
Windriver Vxworks 7.0
Windriver Vxworks
Sonicwall Sonicos
Sonicwall Sonicos 6.2.7.1
Sonicwall Sonicos 6.2.7.7
Sonicwall Sonicos 6.2.7.0
Siemens Siprotec 5 Firmware
Netapp E-series Santricity Os Controller
Siemens Power Meter 9410 Firmware
Siemens Power Meter 9810 Firmware
Siemens Ruggedcom Win7000 Firmware
Siemens Ruggedcom Win7018 Firmware
Siemens Ruggedcom Win7025 Firmware
Siemens Ruggedcom Win7200 Firmware
Belden Hirschmann Hios
Belden Garrettcom Magnum Dx940e Firmware
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »