Vulnerability Details CVE-2019-12264
Wind River VxWorks 6.6, 6.7, 6.8, 6.9.3, 6.9.4, and Vx7 has Incorrect Access Control in IPv4 assignment by the ipdhcpc DHCP client component.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.5%
CVSS Severity
CVSS v3 Score 7.1
CVSS v2 Score 4.8
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-189842.pdf
- https://support.f5.com/csp/article/K41190253
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03960en_us
- https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12264
- https://www.windriver.com/security/announcements/tcp-ip-network-stack-ipnet-urgent11/
- https://cert-portal.siemens.com/productcert/pdf/ssa-189842.pdf
- https://support.f5.com/csp/article/K41190253
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03960en_us
- https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12264
- https://www.windriver.com/security/announcements/tcp-ip-network-stack-ipnet-urgent11/
Products affected by CVE-2019-12264
-
cpe:2.3:h:belden:garrettcom_magnum_dx940e:-
-
cpe:2.3:h:belden:hirschmann_dragon_mach4000:-
-
cpe:2.3:h:belden:hirschmann_dragon_mach4500:-
-
cpe:2.3:h:belden:hirschmann_eagle20:-
-
cpe:2.3:h:belden:hirschmann_eagle30:-
-
cpe:2.3:h:belden:hirschmann_eagle_one:-
-
cpe:2.3:h:belden:hirschmann_ees20:-
-
cpe:2.3:h:belden:hirschmann_ees25:-
-
cpe:2.3:h:belden:hirschmann_eesx20:-
-
cpe:2.3:h:belden:hirschmann_eesx30:-
-
cpe:2.3:h:belden:hirschmann_grs1020:-
-
cpe:2.3:h:belden:hirschmann_grs1030:-
-
cpe:2.3:h:belden:hirschmann_grs1042:-
-
cpe:2.3:h:belden:hirschmann_grs1120:-
-
cpe:2.3:h:belden:hirschmann_grs1130:-
-
cpe:2.3:h:belden:hirschmann_grs1142:-
-
cpe:2.3:h:belden:hirschmann_msp30:-
-
cpe:2.3:h:belden:hirschmann_msp32:-
-
cpe:2.3:h:belden:hirschmann_msp40:-
-
cpe:2.3:h:belden:hirschmann_octopus_os3:-
-
cpe:2.3:h:belden:hirschmann_rail_switch_power_lite:-
-
cpe:2.3:h:belden:hirschmann_rail_switch_power_smart:-
-
cpe:2.3:h:belden:hirschmann_red25:-
-
cpe:2.3:h:belden:hirschmann_rsp20:-
-
cpe:2.3:h:belden:hirschmann_rsp25:-
-
cpe:2.3:h:belden:hirschmann_rsp30:-
-
cpe:2.3:h:belden:hirschmann_rsp35:-
-
cpe:2.3:h:belden:hirschmann_rspe30:-
-
cpe:2.3:h:belden:hirschmann_rspe32:-
-
cpe:2.3:h:belden:hirschmann_rspe35:-
-
cpe:2.3:h:belden:hirschmann_rspe37:-
-
cpe:2.3:h:siemens:ruggedcom_win7000:-
-
cpe:2.3:h:siemens:ruggedcom_win7018:-
-
cpe:2.3:h:siemens:ruggedcom_win7025:-
-
cpe:2.3:h:siemens:ruggedcom_win7200:-
-
cpe:2.3:o:belden:garrettcom_magnum_dx940e_firmware:*
-
cpe:2.3:o:belden:hirschmann_hios:-
-
cpe:2.3:o:belden:hirschmann_hios:07.0.02
-
cpe:2.3:o:belden:hirschmann_hios:07.0.04
-
cpe:2.3:o:belden:hirschmann_hios:07.1.00
-
cpe:2.3:o:belden:hirschmann_hios:07.1.01
-
cpe:2.3:o:belden:hirschmann_hios:07.1.02
-
cpe:2.3:o:belden:hirschmann_hios:07.1.03
-
cpe:2.3:o:siemens:ruggedcom_win7000_firmware:*
-
cpe:2.3:o:siemens:ruggedcom_win7018_firmware:*
-
cpe:2.3:o:siemens:ruggedcom_win7025_firmware:*
-
cpe:2.3:o:siemens:ruggedcom_win7200_firmware:*
-
cpe:2.3:o:windriver:vxworks:6.6
-
cpe:2.3:o:windriver:vxworks:6.7
-
cpe:2.3:o:windriver:vxworks:6.8
-
cpe:2.3:o:windriver:vxworks:6.9.3
-
cpe:2.3:o:windriver:vxworks:6.9.4
-
cpe:2.3:o:windriver:vxworks:7.0