CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2023-38346
https://notcve.org/view.php?id=CVE-2023-38346
An issue was discovered in Wind River VxWorks 6.9 and 7. The function ``tarExtract`` implements TAR file extraction and thereby also processes files within an archive that have relative or absolute file paths. A developer using the "tarExtract" function may expect that the function will strip leading slashes from absolute paths or stop processing when encountering relative paths that are outside of the extraction path, unless otherwise forced. This could lead to unexpected and undocumented behavior, which in general could result in a directory traversal, and associated unexpected behavior. Se descubrió un problema en Wind River VxWorks 6.9 y 7. • https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2023-38346 https://support2.windriver.com/index.php?page=security-notices https://www.pentagrid.ch/en/blog/wind-river-vxworks-tarextract-directory-traversal-vulnerability • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2022-38767
https://notcve.org/view.php?id=CVE-2022-38767
An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure. Se descubrió un problema en Wind River VxWorks 6.9 y 7, que permite que un paquete específicamente manipulado enviado por un servidor Radius pueda causar denegación de servicio durante el procedimiento de acceso a IP Radius. • https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2022-38767 https://windriver.com •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-23937
https://notcve.org/view.php?id=CVE-2022-23937
In Wind River VxWorks 6.9 and 7, a specific crafted packet may lead to an out-of-bounds read during an IKE initial exchange scenario. En Wind River VxWorks versiones 6.9 y 7, un paquete diseñado específico puede provocar una lectura fuera de límites durante un escenario de intercambio inicial de IKE • https://support2.windriver.com/index.php?page=cve&pg=21#list https://support2.windriver.com/index.php?page=security-notices • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2021-43268
https://notcve.org/view.php?id=CVE-2021-43268
An issue was discovered in VxWorks 6.9 through 7. In the IKE component, a specifically crafted packet may lead to reading beyond the end of a buffer, or a double free. Se ha detectado un problema en VxWorks versiones 6.9 a 7. En el componente IKE, un paquete específicamente diseñado puede conllevar a una lectura más allá del final de un búfer, o una doble liberación • https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2021-43268 • CWE-415: Double Free •
CVSS: 9.8EPSS: 0%CPEs: 8EXPL: 0CVE-2020-35198
https://notcve.org/view.php?id=CVE-2020-35198
An issue was discovered in Wind River VxWorks 7. The memory allocator has a possible integer overflow in calculating a memory block's size to be allocated by calloc(). As a result, the actual memory allocated is smaller than the buffer size specified by the arguments, leading to memory corruption. Se detectó un problema en Wind River VxWorks versión 7. El asignador de memoria presenta un posible desbordamiento de enteros al calcular el tamaño de un bloque de memoria que es asignado por una función calloc(). • https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2020-35198 https://support2.windriver.com/index.php?page=security-notices https://www.oracle.com/security-alerts/cpuapr2022.html • CWE-190: Integer Overflow or Wraparound •