CyberSec.Space Logo
Back to CVE Browser

CVE-2013-0714

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0250%
EPSS Percentile32.71th
PublishedMar 20, 2013
Last ModifiedApr 29, 2026

Vulnerability Description

IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to execute arbitrary code or cause a denial of service (daemon hang) via a crafted public-key authentication request.

Affected Platforms (CPE)

πŸ’»
Windriver

Vxworks

= 6.5
πŸ’»
Windriver

Vxworks

= 6.6
πŸ’»
Windriver

Vxworks

= 6.7
πŸ’»
Windriver

Vxworks

= 6.8
πŸ’»
Windriver

Vxworks

= 6.9

References & Advisories

πŸ”— http://ics-cert.us-cert.gov/advisories/ICSA-13-091-01
πŸ”— http://jvn.jp/en/jp/JVN20671901/995359/index.html
πŸ”— http://jvn.jp/en/jp/JVN20671901/index.html
πŸ”— http://jvndb.jvn.jp/jvndb/JVNDB-2013-000021
πŸ”— http://ics-cert.us-cert.gov/advisories/ICSA-13-091-01
πŸ”— http://jvn.jp/en/jp/JVN20671901/995359/index.html
πŸ”— http://jvn.jp/en/jp/JVN20671901/index.html
πŸ”— http://jvndb.jvn.jp/jvndb/JVNDB-2013-000021

Related Vulnerabilities

CVE-2004-030810.0

Unknown vulnerability in Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS15600 be...

CVE-2002-155810.0

Cisco ONS15454 and ONS15327 running ONS before 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that ...

CVE-2010-29659.8

The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT serie...

CVE-2019-122629.8

Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerabilit...