Vulnerabilities > Windriver > Vxworks > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-29 | CVE-2022-23937 | Out-of-bounds Read vulnerability in Windriver Vxworks 6.9/7.0 In Wind River VxWorks 6.9 and 7, a specific crafted packet may lead to an out-of-bounds read during an IKE initial exchange scenario. | 5.0 |
| 2021-11-24 | CVE-2021-43268 | Double Free vulnerability in Windriver Vxworks An issue was discovered in VxWorks 6.9 through 7. | 6.4 |
| 2021-04-13 | CVE-2021-29997 | Out-of-bounds Read vulnerability in Windriver Vxworks 7.0 An issue was discovered in Wind River VxWorks 7 before 21.03. | 5.0 |
| 2020-07-23 | CVE-2020-11440 | Information Exposure vulnerability in Windriver Vxworks httpRpmFs in WebCLI in Wind River VxWorks 5.5 through 7 SR0640 has no check for an escape from the web root. | 5.0 |
| 2020-04-27 | CVE-2020-10664 | NULL Pointer Dereference vulnerability in Windriver Vxworks 6.8.3 The IGMP component in VxWorks 6.8.3 IPNET CVE patches created in 2019 has a NULL Pointer Dereference. | 5.0 |
| 2019-08-09 | CVE-2019-12258 | Session Fixation vulnerability in multiple products Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. | 5.0 |
| 2019-08-09 | CVE-2019-12265 | Memory Leak vulnerability in multiple products Wind River VxWorks 6.5, 6.6, 6.7, 6.8, 6.9.3 and 6.9.4 has a Memory Leak in the IGMPv3 client component. | 5.0 |
| 2019-08-09 | CVE-2019-12263 | Out-of-bounds Write vulnerability in multiple products Wind River VxWorks 6.9.4 and vx7 has a Buffer Overflow in the TCP component (issue 4 of 4). | 6.8 |
| 2019-08-09 | CVE-2019-12259 | NULL Pointer Dereference vulnerability in multiple products Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and vx7 has an array index error in the IGMPv3 client component. | 5.0 |
| 2019-08-09 | CVE-2019-12257 | Classic Buffer Overflow vulnerability in multiple products Wind River VxWorks 6.6 through 6.9 has a Buffer Overflow in the DHCP client component. | 5.8 |