CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
Confidence
Low
EPSS
Percentile
76.1%
The FTP daemon in Wind River VxWorks does not close the TCP connection after a number of failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force attack.
Vendor | Product | Version | CPE |
---|---|---|---|
windriver | vxworks | * | cpe:2.3:o:windriver:vxworks:*:*:*:*:*:*:*:* |
windriver | vxworks | 5 | cpe:2.3:o:windriver:vxworks:5:*:*:*:*:*:*:* |
windriver | vxworks | 5.5 | cpe:2.3:o:windriver:vxworks:5.5:*:*:*:*:*:*:* |
windriver | vxworks | 6 | cpe:2.3:o:windriver:vxworks:6:*:*:*:*:*:*:* |
windriver | vxworks | 6.4 | cpe:2.3:o:windriver:vxworks:6.4:*:*:*:*:*:*:* |