CyberSec.Space Logo
Back to CVE Browser

CVE-2019-12262

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0070%
EPSS Percentile1.33th
PublishedAug 14, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerability: Handling of unsolicited Reverse ARP replies (Logical Flaw).

Affected Platforms (CPE)

πŸ’»
Windriver

Vxworks

= 6.6
πŸ’»
Windriver

Vxworks

= 6.7
πŸ’»
Windriver

Vxworks

= 6.8
πŸ’»
Windriver

Vxworks

= 6.9
πŸ’»
Windriver

Vxworks

= 7.0
πŸ’»
Belden

Hirschmann Hios

<= 07.0.07
πŸ’»
Belden

Hirschmann Hios

<= 07.5.01
πŸ’»
Belden

Hirschmann Hios

<= 07.2.04
πŸ’»
Belden

Hirschmann Hios

<= 05.3.06
πŸ’»
Belden

Garrettcom Magnum Dx940e Firmware

<= 1.0.1_y7
πŸ’»
Siemens

Ruggedcom Win7000 Firmware

< bs5.2.461.17
πŸ’»
Siemens

Ruggedcom Win7018 Firmware

< bs5.2.461.17
πŸ’»
Siemens

Ruggedcom Win7025 Firmware

< bs5.2.461.17
πŸ’»
Siemens

Ruggedcom Win7200 Firmware

< bs5.2.461.17

References & Advisories

πŸ”— https://cert-portal.siemens.com/productcert/pdf/ssa-189842.pdf
πŸ”— https://cert-portal.siemens.com/productcert/pdf/ssa-352504.pdf
πŸ”— https://support.f5.com/csp/article/K41190253
πŸ”— https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12262
πŸ”— https://cert-portal.siemens.com/productcert/pdf/ssa-189842.pdf
πŸ”— https://cert-portal.siemens.com/productcert/pdf/ssa-352504.pdf
πŸ”— https://support.f5.com/csp/article/K41190253
πŸ”— https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12262

Related Vulnerabilities

CVE-2004-030810.0

Unknown vulnerability in Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS15600 be...

CVE-2013-071410.0

IPSSH (aka the SSH server) in Wind River VxWorks 6.5 through 6.9 allows remote attackers to execute arbitrary code or cause a deni...

CVE-2002-155810.0

Cisco ONS15454 and ONS15327 running ONS before 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that ...

CVE-2019-122559.8

Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent P...