CPE-0FB232A3-381C-49C7-A24F-1FEA0A73B9A7 Detail

CPE Details

Windriver VxWorks 7.0 Sr0630

Vendor

windriver

Product

vxworks

Version

7.0

Created

2020-05-27
18h16 +00:00

Modified

2020-05-27
18h16 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:o:windriver:vxworks:7.0:sr0630::::::

Informations

Vendor

windriver

Product

vxworks

Version

7.0

Update

sr0630

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2022-38767	2022-11-24 23h00 +00:00	An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure.	7.5	High
CVE-2022-23937	2022-03-28 23h21 +00:00	In Wind River VxWorks 6.9 and 7, a specific crafted packet may lead to an out-of-bounds read during an IKE initial exchange scenario.	7.5	High
CVE-2021-43268	2021-11-24 15h15 +00:00	An issue was discovered in VxWorks 6.9 through 7. In the IKE component, a specifically crafted packet may lead to reading beyond the end of a buffer, or a double free.	6.5	Medium
CVE-2020-35198	2021-05-12 08h55 +00:00	An issue was discovered in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.	9.8	Critical
CVE-2021-29997	2021-04-13 14h34 +00:00	An issue was discovered in Wind River VxWorks 7 before 21.03. A specially crafted packet may lead to buffer over-read on IKE.	5.3	Medium
CVE-2016-20009	2021-03-11 20h39 +00:00	A DNS client stack-based buffer overflow in ipdnsc_decode_name() affects Wind River VxWorks 6.5 through 7. NOTE: This vulnerability only affects products that are no longer supported by the maintainer	9.8	Critical
CVE-2020-11440	2020-07-23 11h59 +00:00	httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the web root.	7.5	High
CVE-2019-12262	2019-08-14 17h18 +00:00	Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerability: Handling of unsolicited Reverse ARP replies (Logical Flaw).	9.8	Critical
CVE-2019-12264	2019-08-05 15h34 +00:00	Wind River VxWorks 6.6, 6.7, 6.8, 6.9.3, 6.9.4, and Vx7 has Incorrect Access Control in IPv4 assignment by the ipdhcpc DHCP client component.	7.1	High
CVE-2015-3963	2015-08-03 23h00 +00:00	Wind River VxWorks before 5.5.1, 6.5.x through 6.7.x before 6.7.1.1, 6.8.x before 6.8.3, 6.9.x before 6.9.4.4, and 7.x before 7 ipnet_coreip 1.2.2.0, as used on Schneider Electric SAGE RTU devices before J2 and other devices, does not properly generate TCP initial sequence number (ISN) values, which makes it easier for remote attackers to spoof TCP sessions by predicting an ISN value.	5.8

Windriver VxWorks 7.0 Sr0630

CPE Details

CPE Name: cpe:2.3:o:windriver:vxworks:7.0:sr0630:*:*:*:*:*:*

Informations

Vendor

Product

Version

Update

Related CVE

CPE Name: cpe:2.3:o:windriver:vxworks:7.0:sr0630::::::