Vxworks

vxworks

Vendor: Windriver • 38 CVEs

CVEs (38)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-51787 1Windriver 1Vxworks Jan 13, 2026 Feb 15, 2024 N/A· v4 7.5 HIGH· v3 N/A· v2 An issue was discovered in Wind River VxWorks 7 22.09 and 23.03. If a VxWorks task or POSIX thread that uses OpenSSL exits, limited per-task memory is not freed, resulting in a memory leak.
CVE-2023-38346 1Windriver 1Vxworks Nov 21, 2024 Sep 22, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue was discovered in Wind River VxWorks 6.9 and 7. The function ``tarExtract`` implements TAR file extraction and thereby also processes files within an archive that have relative or absolute file paths. A develope...Show more An issue was discovered in Wind River VxWorks 6.9 and 7. The function ``tarExtract`` implements TAR file extraction and thereby also processes files within an archive that have relative or absolute file paths. A developer using the "tarExtract" function may expect that the function will strip leading slashes from absolute paths or stop processing when encountering relative paths that are outside of the extraction path, unless otherwise forced. This could lead to unexpected and undocumented behavior, which in general could result in a directory traversal, and associated unexpected behavior.Show less
CVE-2022-38767 1Windriver 1Vxworks Apr 14, 2026 Nov 25, 2022 N/A· v4 7.5 HIGH· v3 N/A· v2 An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure.
CVE-2022-23937 1Windriver 1Vxworks Nov 21, 2024 Mar 29, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 In Wind River VxWorks 6.9 and 7, a specific crafted packet may lead to an out-of-bounds read during an IKE initial exchange scenario.
CVE-2021-43268 1Windriver 1Vxworks Nov 21, 2024 Nov 24, 2021 N/A· v4 6.5 MEDIUM· v3 6.4 MEDIUM· v2 An issue was discovered in VxWorks 6.9 through 7. In the IKE component, a specifically crafted packet may lead to reading beyond the end of a buffer, or a double free.
CVE-2020-35198 2Oracle Windriver 2Communications Eagle Vxworks Nov 21, 2024 May 12, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller...Show more An issue was discovered in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.Show less
CVE-2021-29999 1Windriver 1Vxworks Nov 21, 2024 Apr 13, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in Wind River VxWorks through 6.8. There is a possible stack overflow in dhcp server.
CVE-2021-29998 2Siemens Windriver 36Ruggedcom Win Subscriber Station Firmware Scalance X200 4 P Irt FirmwareScalance X201 3p Irt Firmware+33 more Nov 21, 2024 Apr 13, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 An issue was discovered in Wind River VxWorks before 6.5. There is a possible heap overflow in dhcp client.
CVE-2021-29997 1Windriver 1Vxworks Nov 21, 2024 Apr 13, 2021 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 An issue was discovered in Wind River VxWorks 7 before 21.03. A specially crafted packet may lead to buffer over-read on IKE.
CVE-2016-20009 2Siemens Windriver 8Sgt 100 Firmware Sgt 200 FirmwareSgt 300 Firmware+5 more Nov 21, 2024 Mar 11, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 A DNS client stack-based buffer overflow in ipdnsc_decode_name() affects Wind River VxWorks 6.5 through 7. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
CVE-2020-28895 2Oracle Windriver 2Communications Eagle Vxworks Nov 21, 2024 Feb 3, 2021 N/A· v4 7.3 HIGH· v3 7.5 HIGH· v2 In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by th...Show more In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption.Show less
CVE-2020-11440 1Windriver 1Vxworks Nov 21, 2024 Jul 23, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the web root.
CVE-2020-10664 1Windriver 1Vxworks Nov 21, 2024 Apr 27, 2020 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The IGMP component in VxWorks 6.8.3 IPNET CVE patches created in 2019 has a NULL Pointer Dereference.
CVE-2019-12262 3Belden SiemensWindriver 7Garrettcom Magnum Dx940e Firmware Hirschmann HiosRuggedcom Win7000 Firmware+4 more Nov 21, 2024 Aug 14, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerability: Handling of unsolicited Reverse ARP replies (Logical Flaw).
CVE-2019-12261 6Belden NetappOracle+3 more 13Communications Eagle E Series Santricity Os ControllerGarrettcom Magnum Dx940e Firmware+10 more Nov 21, 2024 Aug 9, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Wind River VxWorks 6.7 though 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 3 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion during connect() to a remote host.
CVE-2019-12260 6Belden NetappOracle+3 more 13Communications Eagle E Series Santricity Os ControllerGarrettcom Magnum Dx940e Firmware+10 more Nov 21, 2024 Aug 9, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Wind River VxWorks 6.9 and vx7 has a Buffer Overflow in the TCP component (issue 2 of 4). This is an IPNET security vulnerability: TCP Urgent Pointer state confusion caused by a malformed TCP AO option.
CVE-2019-12258 5Belden NetappSiemens+2 more 12E Series Santricity Os Controller Garrettcom Magnum Dx940e FirmwareHirschmann Hios+9 more Nov 21, 2024 Aug 9, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection via malformed TCP options.
CVE-2019-12255 5Belden NetappSiemens+2 more 12E Series Santricity Os Controller Garrettcom Magnum Dx940e FirmwareHirschmann Hios+9 more Nov 21, 2024 Aug 9, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow.
CVE-2019-12265 5Belden NetappSiemens+2 more 12E Series Santricity Os Controller Garrettcom Magnum Dx940e FirmwareHirschmann Hios+9 more Nov 21, 2024 Aug 9, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 Wind River VxWorks 6.5, 6.6, 6.7, 6.8, 6.9.3 and 6.9.4 has a Memory Leak in the IGMPv3 client component. There is an IPNET security vulnerability: IGMP Information leak via IGMPv3 specific membership report.
CVE-2019-12263 5Belden NetappSiemens+2 more 12E Series Santricity Os Controller Garrettcom Magnum Dx940e FirmwareHirschmann Hios+9 more Nov 21, 2024 Aug 9, 2019 N/A· v4 8.1 HIGH· v3 6.8 MEDIUM· v2 Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). There is an IPNET security vulnerability: TCP Urgent Pointer state confusion due to race condition.

12 Next