Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
windriver vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2023-38346
An issue exists in Wind River VxWorks 6.9 and 7. The function ``tarExtract`` implements TAR file extraction and thereby also processes files within an archive that have relative or absolute file paths. A developer using the "tarExtract" function may expect that the func...
Windriver Vxworks 6.9
Windriver Vxworks 7.0
7.5
CVSSv3
CVE-2022-38767
An issue exists in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure.
Windriver Vxworks
Windriver Vxworks 6.9.4.12
Windriver Vxworks 7.0
7.5
CVSSv3
CVE-2022-23937
In Wind River VxWorks 6.9 and 7, a specific crafted packet may lead to an out-of-bounds read during an IKE initial exchange scenario.
Windriver Vxworks 6.9
Windriver Vxworks 7.0
6.5
CVSSv3
CVE-2021-43268
An issue exists in VxWorks 6.9 up to and including 7. In the IKE component, a specifically crafted packet may lead to reading beyond the end of a buffer, or a double free.
Windriver Vxworks
9.8
CVSSv3
CVE-2020-35198
An issue exists in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to mem...
Windriver Vxworks
Windriver Vxworks 6.9.4.12
Oracle Communications Eagle
Oracle Communications Eagle 46.7.0
5.3
CVSSv3
CVE-2021-29997
An issue exists in Wind River VxWorks 7 prior to 21.03. A specially crafted packet may lead to buffer over-read on IKE.
Windriver Vxworks
9.8
CVSSv3
CVE-2021-29998
An issue exists in Wind River VxWorks prior to 6.5. There is a possible heap overflow in dhcp client.
Windriver Vxworks
Siemens Ruggedcom Win Subscriber Station Firmware
Siemens Scalance X200-4 P Irt Firmware
Siemens Scalance X201-3p Irt Firmware
Siemens Scalance X201-3p Irt Pro Firmware
Siemens Scalance X202-2 Irt Firmware
Siemens Scalance X202-2p Irt Firmware
Siemens Scalance X202-2p Irt Pro Firmware
Siemens Scalance X204 Irt Firmware
Siemens Scalance X204 Irt Pro Firmware
Siemens Scalance X204-2 Firmware
Siemens Scalance X204-2fm Firmware
Siemens Scalance X204-2ld Firmware
Siemens Scalance X204-2ld Ts Firmware
Siemens Scalance X204-2ts Firmware
Siemens Scalance X206-1 Firmware
Siemens Scalance X206-1ld Firmware
Siemens Scalance X208 Firmware
Siemens Scalance X208 Pro Firmware
Siemens Scalance X212-2 Firmware
Siemens Scalance X212-2ld Firmware
Siemens Scalance X216 Firmware
7.4
CVSSv3
CVE-2021-3450
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve paramet...
Openssl Openssl
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider Firmware -
Netapp Storagegrid Firmware -
Windriver Linux -
Windriver Linux 18.0
Windriver Linux 19.0
Windriver Linux 17.0
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Ontap Select Deploy Administration Utility -
Netapp Cloud Volumes Ontap Mediator -
Fedoraproject Fedora 34
Tenable Nessus Agent
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Oracle Jd Edwards World Security A9.4
Oracle Weblogic Server 12.2.1.4.0
1 Github repository
1 Article
9.8
CVSSv3
CVE-2016-20009
A DNS client stack-based buffer overflow in ipdnsc_decode_name() affects Wind River VxWorks 6.5 up to and including 7. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Windriver Vxworks
Siemens Sgt-100 Firmware
Siemens Sgt-200 Firmware
Siemens Sgt-300 Firmware
Siemens Sgt-400 Firmware
Siemens Sgt-a20 Firmware
Siemens Sgt-a35 Firmware
Siemens Sgt-a65 Firmware
7.3
CVSSv3
CVE-2020-28895
In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.
Windriver Vxworks
Windriver Vxworks 6.9.4.12
Oracle Communications Eagle
Oracle Communications Eagle 46.7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »