Lucene search
K

552 matches found

RedhatCVE
RedhatCVE
added 2025/02/13 5:52 p.m.8 views

CVE-2024-28759

A crafted network packet may cause a buffer overrun in Wind River VxWorks 7 through 23.09...

4.3CVSS7AI score0.00249EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2025/01/28 12:0 a.m.548 views

Wind River Software VxWorks 6.9 Weak Password Hashing Algorithms

The password hashing algorithm introduced in VxWorks 6.9 is considered insecure. This algorithm employs a single iteration of SHA-256 combined with a salt to hash user passwords. The password hashing algorithm used in VxWorks 7 24.04 is also considered insecure. This algorithm uses 5,000 iteratio...

10CVSS6.7AI score0.57544EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.22 views

The vulnerability of DHCP servers for real-time operating systems like Wind River VxWorks allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of DHCP servers for real-time operating systems from Wind River VxWorks relates to operations that go beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information...

10CVSS8AI score0.01789EPSS
Exploits0References4Affected Software1
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.141 views

D-Link I2eye Video Conference AutoAnswer (WDBRPC)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'D-Link i2eye Video Conference AutoAnswer WDBRPC', 'Description' = %q This module can be used to enable auto-answer mode for the D-Link i2eye vide...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.145 views

URGENT/11 Scanner, Based On Detection Tool By Armis

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'URGENT/11 Scanner, Based on Detection Tool by Armis', 'Description' = %q This module detects VxWorks and the IPnet IP stack, along with devices...

7.5CVSS7AI score0.23354EPSS
Exploits2
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.206 views

VxWorks WDB Agent Remote Reboot

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VxWorks WDB Agent Remote Reboot', 'Description' = %q This module provides the ability to reboot a VxWorks target through WDBRPC , 'Author' = 'hdm...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2024/08/31 12:0 a.m.203 views

VxWorks WDB Agent Remote Memory Dump

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VxWorks WDB Agent Remote Memory Dump', 'Description' = %q This module provides the ability to dump the system memory of a VxWorks target through...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/10 12:0 a.m.33 views

Hirschmann HiOS Switches Heap-based Buffer Overflow (CVE-2019-12257)

DHCP packets may go past the local area network LAN via DHCP-relays, but are otherwise confined to the LAN. The DHCP-client may be used by VxWorks and in the bootrom. Bootrom, using DHCP/BOOTP, is only vulnerable during the boot-process. This vulnerability may be used to overwrite the heap, which...

8.8CVSS7.8AI score0.84177EPSS
Exploits0References10
NVD
NVD
added 2024/05/14 3:14 p.m.9 views

CVE-2024-28759

A crafted network packet may cause a buffer overrun in Wind River VxWorks 7 through 23.09...

4.3CVSS4.8AI score0.00249EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/14 12:0 a.m.3 views

Wind River VxWorks 安全漏洞

Wind River VxWorks is an operating system from Wind River Systems, Inc. the industry-leading real-time operating system for building embedded devices and systems. A security vulnerability exists in Wind River VxWorks versions 7 through 23.09 that originates from a buffer overflow...

4.3CVSS7.1AI score0.00249EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/05/08 7:25 p.m.11 views

CVE-2024-28759

A crafted network packet may cause a buffer overrun in Wind River VxWorks 7 through 23.09...

4.3CVSS7.1AI score0.00249EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/05/08 7:25 p.m.17 views

CVE-2024-28759

A crafted network packet may cause a buffer overrun in Wind River VxWorks 7 through 23.09...

4.3CVSS5.2AI score0.00249EPSS
Exploits0References2
CVE
CVE
added 2024/05/08 7:25 p.m.24 views

CVE-2024-28759

Wind River VxWorks 7.x up to 23.09 is affected by a vulnerability where a crafted network packet can cause a buffer overrun. Affected component is the VxWorks networking input handling; root cause is a buffer overflow triggered by network packets. Practical impact is a potential crash or instabil...

4.3CVSS7AI score0.00249EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/05/08 12:0 a.m.3 views

PT-2024-22565 · Wind River · Vxworks

Name of the Vulnerable Software and Affected Versions: Wind River VxWorks versions 7 through 23.09 Description: A crafted network packet may cause a buffer overrun. Recommendations: For versions 7 through 23.09, update to a version that contains a fix for this issue...

4.3CVSS7.4AI score0.00249EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/02/19 12:0 a.m.11 views

The vulnerability of the OpenSSL processor in real-time operating systems like Wind River VxWorks allows attackers to trigger a service failure.

The vulnerability of the OpenSSL processor in real-time operating systems from Wind River and VxWorks is related to memory release errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

10CVSS5.5AI score0.00487EPSS
Exploits0References3
OSV
OSV
added 2024/02/15 6:15 a.m.4 views

CVE-2023-51787

An issue was discovered in Wind River VxWorks 7 22.09 and 23.03. If a VxWorks task or POSIX thread that uses OpenSSL exits, limited per-task memory is not freed, resulting in a memory leak...

7.5CVSS5.8AI score0.00487EPSS
Exploits0References1
NVD
NVD
added 2024/02/15 6:15 a.m.14 views

CVE-2023-51787

An issue was discovered in Wind River VxWorks 7 22.09 and 23.03. If a VxWorks task or POSIX thread that uses OpenSSL exits, limited per-task memory is not freed, resulting in a memory leak...

7.5CVSS6.5AI score0.00487EPSS
Exploits0References1
Prion
Prion
added 2024/02/15 6:15 a.m.13 views

Memory corruption

An issue was discovered in Wind River VxWorks 7 22.09 and 23.03. If a VxWorks task or POSIX thread that uses OpenSSL exits, limited per-task memory is not freed, resulting in a memory leak...

7.2AI score0.00487EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/02/15 12:0 a.m.9 views

CVE-2023-51787

An issue was discovered in Wind River VxWorks 7 22.09 and 23.03. If a VxWorks task or POSIX thread that uses OpenSSL exits, limited per-task memory is not freed, resulting in a memory leak...

6.9AI score0.00487EPSS
Exploits0References1
CVE
CVE
added 2024/02/15 12:0 a.m.92 views

CVE-2023-51787

CVE-2023-51787 affects Wind River VxWorks 7 22.09 and 23.03. The issue occurs when a VxWorks task or POSIX thread that uses OpenSSL exits, causing the per‑task memory not to be freed and resulting in a memory leak. The described impact is a memory availability concern (high severity per CVSS) but...

7.5CVSS6.8AI score0.00487EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder