Vulnerabilities > Windriver

DATE CVE VULNERABILITY TITLE RISK
2021-05-12 CVE-2020-35198 Integer Overflow OR Wraparound vulnerability in Windriver Vxworks
An issue was discovered in Wind River VxWorks 7.
network
low complexity
windriver CWE-190
7.5
2021-04-13 CVE-2021-29999 Out-Of-Bounds Write vulnerability in Windriver Vxworks
An issue was discovered in Wind River VxWorks through 6.8.
network
low complexity
windriver CWE-787
7.5
2021-04-13 CVE-2021-29998 Out-Of-Bounds Write vulnerability in Windriver Vxworks
An issue was discovered in Wind River VxWorks before 6.5.
network
low complexity
windriver CWE-787
7.5
2021-04-13 CVE-2021-29997 Out-Of-Bounds Read vulnerability in Windriver Vxworks 7.0
An issue was discovered in Wind River VxWorks 7 before 21.03.
network
low complexity
windriver CWE-125
5.0
2021-03-25 CVE-2021-3450 Improper Certificate Validation vulnerability in multiple products
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain.
5.8
2021-03-11 CVE-2016-20009 Out-Of-Bounds Write vulnerability in Windriver Vxworks
** UNSUPPORTED WHEN ASSIGNED ** A DNS client stack-based buffer overflow in ipdnsc_decode_name() affects Wind River VxWorks 6.5 through 7.
network
low complexity
windriver CWE-787
7.5
2021-02-03 CVE-2020-28895 Classic Buffer Overflow vulnerability in Windriver Vxworks
In Wind River VxWorks, memory allocator has a possible overflow in calculating the memory block's size to be allocated by calloc().
network
low complexity
windriver CWE-120
7.5
2020-07-23 CVE-2020-11440 Information Exposure vulnerability in Windriver Vxworks
httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the web root.
network
low complexity
windriver CWE-200
5.0
2020-04-27 CVE-2020-10664 Null Pointer Dereference vulnerability in Windriver Vxworks 6.8.3
The IGMP component in VxWorks 6.8.3 IPNET CVE patches created in 2019 has a NULL Pointer Dereference.
network
low complexity
windriver CWE-476
5.0
2020-04-27 CVE-2020-10647 Double Free vulnerability in Windriver Vxworks
Wind River VxWorks tftp client library, as distributed in VxWorks 6.9 through 7 SR0630, has a double free
network
low complexity
windriver CWE-415
7.5