CVE-2019-12255
Scores
EPSS
0.795medium79.5%
0%20%40%60%80%100%
Percentile: 79.5%
CVSS
9.8critical3.x
0246810
CVSS Score: 9.8/10
All CVSS Scores
CVSS 3.x
9.8Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector Breakdown
CVSS (Common Vulnerability Scoring System) vector provides detailed metrics about vulnerability characteristics
CVSS
Attack Vector
Network (N)
Describes how the vulnerability is exploited
AV:N
Attack Complexity
Low (L)
Describes the conditions beyond the attacker's control
AC:L
Privileges Required
None (N)
Describes the level of privileges an attacker must possess
PR:N
User Interaction
None (N)
Captures the requirement for a human user participation
UI:N
Scope
Unchanged (U)
Determines if a successful attack impacts components beyond the vulnerable component
S:U
Confidentiality Impact
High (H)
Measures the impact to the confidentiality of information
C:H
Integrity Impact
High (H)
Measures the impact to integrity of a successfully exploited vulnerability
I:H
Availability Impact
High (H)
Measures the impact to the availability of the impacted component
A:H
CVSS 2.0
7.5Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Vector Breakdown
CVSS (Common Vulnerability Scoring System) vector provides detailed metrics about vulnerability characteristics
CVSS
Attack Vector
Network (N)
Describes how the vulnerability is exploited
AV:N
Attack Complexity
Low (L)
Describes the conditions beyond the attacker's control
AC:L
Authentication
None (N)
Describes the level of privileges an attacker must possess
Au:N
Confidentiality Impact
Partial
Measures the impact to the confidentiality of information
C:P
Integrity Impact
Partial
Measures the impact to integrity of a successfully exploited vulnerability
I:P
Availability Impact
Partial
Measures the impact to the availability of the impacted component
A:P
Description
Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow.
Scaner-VS 7 — a modern vulnerability management solution
Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7Sources
nvd
CWEs
CWE-120
Related Vulnerabilities
Exploits
Vulnerable Software (17)
Type: Configuration
Vendor: *
Product: e-series_santricity_os_controller
Operating System: * * *
Trait:
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*", "versionEndIncluding": "8.40.50.00", "versionStartIncluding": "8.00", ...
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*", "versionEndIncluding": "8.40.50.00", "versionStartIncluding": "8.00", "vulnerable": true } ], "operator": "OR"}
Source: nvd
Type: Configuration
Vendor: *
Product: garrettcom_magnum_dx940e_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:garrettcom_magnum_dx940e_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "1.0.1_y7", ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:garrettcom_magnum_dx940e_firmware:*:*:*:*:*:*:*:*", "versionEndIncluding": "1.0.1_y7", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:belden:garrettcom_magnum_dx940e:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: hirschmann_hios
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:hirschmann_hios:*:*:*:*:*:*:*:*", "versionEndIncluding": "07.0.07", "vulnerable": tru...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:hirschmann_hios:*:*:*:*:*:*:*:*", "versionEndIncluding": "07.0.07", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:belden:hirschmann_ees20:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_ees25:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_eesx20:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_eesx30:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_grs1020:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_grs1030:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_grs1042:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_grs1120:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_grs1130:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_grs1142:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_msp30:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_msp32:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rail_switch_power_lite:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rail_switch_power_smart:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_red25:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rsp20:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rsp25:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rsp30:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rsp35:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rspe30:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rspe32:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rspe35:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_rspe37:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: hirschmann_hios
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:hirschmann_hios:*:*:*:*:*:*:*:*", "versionEndIncluding": "07.5.01", "vulnerable": tru...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:hirschmann_hios:*:*:*:*:*:*:*:*", "versionEndIncluding": "07.5.01", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:belden:hirschmann_msp40:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_octopus_os3:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: hirschmann_hios
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:hirschmann_hios:*:*:*:*:*:*:*:*", "versionEndIncluding": "07.2.04", "vulnerable": tru...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:hirschmann_hios:*:*:*:*:*:*:*:*", "versionEndIncluding": "07.2.04", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:belden:hirschmann_dragon_mach4000:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_dragon_mach4500:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: hirschmann_hios
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:hirschmann_hios:*:*:*:*:*:*:*:*", "versionEndIncluding": "05.3.06", "vulnerable": tru...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:belden:hirschmann_hios:*:*:*:*:*:*:*:*", "versionEndIncluding": "05.3.06", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:belden:hirschmann_eagle_one:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_eagle20:-:*:*:*:*:*:*:*" }, { "cpe23uri": "cpe:2.3:h:belden:hirschmann_eagle30:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: power_meter_9410_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:power_meter_9410_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "2.2.1", "vulnera...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:power_meter_9410_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "2.2.1", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:siemens:power_meter_9410:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: power_meter_9810_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:power_meter_9810_firmware:*:*:*:*:*:*:*:*", "vulnerable": true } ], "opera...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:power_meter_9810_firmware:*:*:*:*:*:*:*:*", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:siemens:power_meter_9810:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: ruggedcom_win7000_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:ruggedcom_win7000_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "bs5.2.461.17", ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:ruggedcom_win7000_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "bs5.2.461.17", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:siemens:ruggedcom_win7000:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: ruggedcom_win7018_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:ruggedcom_win7018_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "bs5.2.461.17", ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:ruggedcom_win7018_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "bs5.2.461.17", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:siemens:ruggedcom_win7018:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: ruggedcom_win7025_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:ruggedcom_win7025_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "bs5.2.461.17", ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:ruggedcom_win7025_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "bs5.2.461.17", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:siemens:ruggedcom_win7025:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: ruggedcom_win7200_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:ruggedcom_win7200_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "bs5.2.461.17", ...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:ruggedcom_win7200_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "bs5.2.461.17", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:siemens:ruggedcom_win7200:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: siprotec_5_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:siprotec_5_firmware:*:*:*:*:*:*:*:cp300", "versionEndExcluding": "7.91", "vulnerable...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:siprotec_5_firmware:*:*:*:*:*:*:*:cp300", "versionEndExcluding": "7.91", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:h:siemens:siprotec_5:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: siprotec_5_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:siprotec_5_firmware:*:*:*:*:*:*:*:cp200", "vulnerable": true } ], "operato...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:siprotec_5_firmware:*:*:*:*:*:*:*:cp200", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:siprotec_5:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: siprotec_5_firmware
Operating System: * * *
Trait:
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:siprotec_5_firmware:*:*:*:*:*:*:*:cp300", "vulnerable": true } ], "operato...
{ "children": [ { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:siprotec_5_firmware:*:*:*:*:*:*:*:cp300", "vulnerable": true } ], "operator": "OR" }, { "cpe_match": [ { "cpe23uri": "cpe:2.3:o:siemens:siprotec_5:-:*:*:*:*:*:*:*" } ], "operator": "OR" } ], "operator": "AND"}
Source: nvd
Type: Configuration
Vendor: *
Product: sonicos
Operating System: * * *
Trait:
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "5.9.0.7", "versionStartIncluding": "5.9.0.0", "vulnerable": true ...
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "5.9.0.7", "versionStartIncluding": "5.9.0.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "5.9.1.12", "versionStartIncluding": "5.9.1.0.", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.2.3.1", "versionStartIncluding": "6.2.0.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.2.4.3", "versionStartIncluding": "6.2.4.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.2.5.3", "versionStartIncluding": "6.2.5.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.2.6.1", "versionStartIncluding": "6.2.6.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.2.7.4", "versionStartIncluding": "6.2.7.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.2.9.2", "versionStartIncluding": "6.2.9.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.5.0.3", "versionStartIncluding": "6.5.0.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.5.1.4", "versionStartIncluding": "6.5.1.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.5.2.3", "versionStartIncluding": "6.5.2.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.5.3.3", "versionStartIncluding": "6.5.3.0", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:*:*:*:*:*:*:*:*", "versionEndIncluding": "6.5.4.3", "versionStartIncluding": "6.5.4.0.", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:6.2.7.0:*:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:6.2.7.1:*:*:*:*:*:*:*", "vulnerable": true }, { "cpe23uri": "cpe:2.3:o:sonicwall:sonicos:6.2.7.7:*:*:*:*:*:*:*", "vulnerable": true } ], "operator": "OR"}
Source: nvd
Type: Configuration
Vendor: *
Product: vxworks
Operating System: * * *
Trait:
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:windriver:vxworks:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.9.4", "versionStartIncluding": "6.5", "vulnerable": true } ]...
{ "cpe_match": [ { "cpe23uri": "cpe:2.3:o:windriver:vxworks:*:*:*:*:*:*:*:*", "versionEndExcluding": "6.9.4", "versionStartIncluding": "6.5", "vulnerable": true } ], "operator": "OR"}
Source: nvd
End of list