V
Scaner-VS
ENRU
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
Back to catalog
CVE-2019-12262
CVE
Critical

Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerability: Handli…

CVSS
9.8
Critical
EPSS
0.04
p89
Published
2019-01-01
Updated
2019-01-01
Description

Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerability: Handling of unsolicited Reverse ARP replies (Logical Flaw).

Tags · CWE
Pre-auth
Affected products
Vxworks
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Timeline
2019-01-01
Published
2019-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.041 · p89
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
Siemens
Ruggedcom Win7000Ruggedcom Win7200Ruggedcom Win7000 FirmwareRuggedcom Win7018Ruggedcom Win7018 FirmwareRuggedcom Win7025Ruggedcom Win7025 FirmwareRuggedcom Win7200 Firmware
Belden
Hirschmann HiosHirschmann Eagle20Hirschmann Eagle30Hirschmann Eagle OneHirschmann Rail Switch Power LiteHirschmann Rail Switch Power SmartGarrettcom Magnum Dx940eGarrettcom Magnum Dx940e FirmwareHirschmann Dragon Mach4000Hirschmann Dragon Mach4500+23
Windriver
Vxworks
ProductVendorStatus
garrettcom_magnum_dx940e_firmware*Tracked
hirschmann_hios*Tracked
hirschmann_hios*Tracked
hirschmann_hios*Tracked
hirschmann_hios*Tracked
ruggedcom_win7000_firmware*Tracked
ruggedcom_win7018_firmware*Tracked
ruggedcom_win7025_firmware*Tracked
ruggedcom_win7200_firmware*Tracked
vxworks*Tracked
Source databases
CVE
Related vulnerabilities
BDU:2020-01293