// For flags

CVE-2019-12255

VxWorks 6.8 - TCP Urgent Pointer = 0 Integer Underflow

Severity Score

9.8
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

2
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Wind River VxWorks has a Buffer Overflow in the TCP component (issue 1 of 4). This is a IPNET security vulnerability: TCP Urgent Pointer = 0 that leads to an integer underflow.

Wind River VxWorks presenta un desbordamiento de bĂșfer en el componente TCP (problema 1 de 4). Esta es una vulnerabilidad de seguridad de IPNET: TCP Urgent Pointer = 0 que conduce a un desbordamiento de enteros.

VxWorks version 6.8 suffers from an integer underflow vulnerability.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-05-21 CVE Reserved
  • 2019-08-09 CVE Published
  • 2019-08-12 First Exploit
  • 2024-08-04 CVE Updated
  • 2024-11-17 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Siemens
Search vendor "Siemens"
Siprotec 5 Firmware
Search vendor "Siemens" for product "Siprotec 5 Firmware"
< 7.91
Search vendor "Siemens" for product "Siprotec 5 Firmware" and version " < 7.91"
cp300
Affected
in Siemens
Search vendor "Siemens"
Siprotec 5
Search vendor "Siemens" for product "Siprotec 5"
--
Safe
Siemens
Search vendor "Siemens"
Siprotec 5 Firmware
Search vendor "Siemens" for product "Siprotec 5 Firmware"
*cp200
Affected
in Siemens
Search vendor "Siemens"
Siprotec 5
Search vendor "Siemens" for product "Siprotec 5"
--
Safe
Siemens
Search vendor "Siemens"
Siprotec 5 Firmware
Search vendor "Siemens" for product "Siprotec 5 Firmware"
*cp300
Affected
in Siemens
Search vendor "Siemens"
Siprotec 5
Search vendor "Siemens" for product "Siprotec 5"
--
Safe
Siemens
Search vendor "Siemens"
Power Meter 9410 Firmware
Search vendor "Siemens" for product "Power Meter 9410 Firmware"
< 2.2.1
Search vendor "Siemens" for product "Power Meter 9410 Firmware" and version " < 2.2.1"
-
Affected
in Siemens
Search vendor "Siemens"
Power Meter 9410
Search vendor "Siemens" for product "Power Meter 9410"
--
Safe
Siemens
Search vendor "Siemens"
Power Meter 9810 Firmware
Search vendor "Siemens" for product "Power Meter 9810 Firmware"
*-
Affected
in Siemens
Search vendor "Siemens"
Power Meter 9810
Search vendor "Siemens" for product "Power Meter 9810"
--
Safe
Siemens
Search vendor "Siemens"
Ruggedcom Win7000 Firmware
Search vendor "Siemens" for product "Ruggedcom Win7000 Firmware"
< bs5.2.461.17
Search vendor "Siemens" for product "Ruggedcom Win7000 Firmware" and version " < bs5.2.461.17"
-
Affected
in Siemens
Search vendor "Siemens"
Ruggedcom Win7000
Search vendor "Siemens" for product "Ruggedcom Win7000"
--
Safe
Siemens
Search vendor "Siemens"
Ruggedcom Win7018 Firmware
Search vendor "Siemens" for product "Ruggedcom Win7018 Firmware"
< bs5.2.461.17
Search vendor "Siemens" for product "Ruggedcom Win7018 Firmware" and version " < bs5.2.461.17"
-
Affected
in Siemens
Search vendor "Siemens"
Ruggedcom Win7018
Search vendor "Siemens" for product "Ruggedcom Win7018"
--
Safe
Siemens
Search vendor "Siemens"
Ruggedcom Win7025 Firmware
Search vendor "Siemens" for product "Ruggedcom Win7025 Firmware"
< bs5.2.461.17
Search vendor "Siemens" for product "Ruggedcom Win7025 Firmware" and version " < bs5.2.461.17"
-
Affected
in Siemens
Search vendor "Siemens"
Ruggedcom Win7025
Search vendor "Siemens" for product "Ruggedcom Win7025"
--
Safe
Siemens
Search vendor "Siemens"
Ruggedcom Win7200 Firmware
Search vendor "Siemens" for product "Ruggedcom Win7200 Firmware"
< bs5.2.461.17
Search vendor "Siemens" for product "Ruggedcom Win7200 Firmware" and version " < bs5.2.461.17"
-
Affected
in Siemens
Search vendor "Siemens"
Ruggedcom Win7200
Search vendor "Siemens" for product "Ruggedcom Win7200"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Ees20
Search vendor "Belden" for product "Hirschmann Ees20"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Ees25
Search vendor "Belden" for product "Hirschmann Ees25"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Eesx20
Search vendor "Belden" for product "Hirschmann Eesx20"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Eesx30
Search vendor "Belden" for product "Hirschmann Eesx30"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Grs1020
Search vendor "Belden" for product "Hirschmann Grs1020"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Grs1030
Search vendor "Belden" for product "Hirschmann Grs1030"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Grs1042
Search vendor "Belden" for product "Hirschmann Grs1042"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Grs1120
Search vendor "Belden" for product "Hirschmann Grs1120"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Grs1130
Search vendor "Belden" for product "Hirschmann Grs1130"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Grs1142
Search vendor "Belden" for product "Hirschmann Grs1142"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Msp30
Search vendor "Belden" for product "Hirschmann Msp30"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Msp32
Search vendor "Belden" for product "Hirschmann Msp32"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rail Switch Power Lite
Search vendor "Belden" for product "Hirschmann Rail Switch Power Lite"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rail Switch Power Smart
Search vendor "Belden" for product "Hirschmann Rail Switch Power Smart"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Red25
Search vendor "Belden" for product "Hirschmann Red25"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rsp20
Search vendor "Belden" for product "Hirschmann Rsp20"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rsp25
Search vendor "Belden" for product "Hirschmann Rsp25"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rsp30
Search vendor "Belden" for product "Hirschmann Rsp30"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rsp35
Search vendor "Belden" for product "Hirschmann Rsp35"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rspe30
Search vendor "Belden" for product "Hirschmann Rspe30"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rspe32
Search vendor "Belden" for product "Hirschmann Rspe32"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rspe35
Search vendor "Belden" for product "Hirschmann Rspe35"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.0.07
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Rspe37
Search vendor "Belden" for product "Hirschmann Rspe37"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.5.01
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.5.01"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Msp40
Search vendor "Belden" for product "Hirschmann Msp40"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.5.01
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.5.01"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Octopus Os3
Search vendor "Belden" for product "Hirschmann Octopus Os3"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.2.04
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.2.04"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Dragon Mach4000
Search vendor "Belden" for product "Hirschmann Dragon Mach4000"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 07.2.04
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.2.04"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Dragon Mach4500
Search vendor "Belden" for product "Hirschmann Dragon Mach4500"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 05.3.06
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 05.3.06"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Eagle One
Search vendor "Belden" for product "Hirschmann Eagle One"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 05.3.06
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 05.3.06"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Eagle20
Search vendor "Belden" for product "Hirschmann Eagle20"
--
Safe
Belden
Search vendor "Belden"
Hirschmann Hios
Search vendor "Belden" for product "Hirschmann Hios"
<= 05.3.06
Search vendor "Belden" for product "Hirschmann Hios" and version " <= 05.3.06"
-
Affected
in Belden
Search vendor "Belden"
Hirschmann Eagle30
Search vendor "Belden" for product "Hirschmann Eagle30"
--
Safe
Belden
Search vendor "Belden"
Garrettcom Magnum Dx940e Firmware
Search vendor "Belden" for product "Garrettcom Magnum Dx940e Firmware"
<= 1.0.1_y7
Search vendor "Belden" for product "Garrettcom Magnum Dx940e Firmware" and version " <= 1.0.1_y7"
-
Affected
in Belden
Search vendor "Belden"
Garrettcom Magnum Dx940e
Search vendor "Belden" for product "Garrettcom Magnum Dx940e"
--
Safe
Windriver
Search vendor "Windriver"
Vxworks
Search vendor "Windriver" for product "Vxworks"
>= 6.5 < 6.9.4
Search vendor "Windriver" for product "Vxworks" and version " >= 6.5 < 6.9.4"
-
Affected
Netapp
Search vendor "Netapp"
E-series Santricity Os Controller
Search vendor "Netapp" for product "E-series Santricity Os Controller"
>= 8.00 <= 8.40.50.00
Search vendor "Netapp" for product "E-series Santricity Os Controller" and version " >= 8.00 <= 8.40.50.00"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 5.9.0.0 <= 5.9.0.7
Search vendor "Sonicwall" for product "Sonicos" and version " >= 5.9.0.0 <= 5.9.0.7"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 5.9.1.0. <= 5.9.1.12
Search vendor "Sonicwall" for product "Sonicos" and version " >= 5.9.1.0. <= 5.9.1.12"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.2.0.0 <= 6.2.3.1
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.0.0 <= 6.2.3.1"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.2.4.0 <= 6.2.4.3
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.4.0 <= 6.2.4.3"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.2.5.0 <= 6.2.5.3
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.5.0 <= 6.2.5.3"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.2.6.0 <= 6.2.6.1
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.6.0 <= 6.2.6.1"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.2.7.0 <= 6.2.7.4
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.7.0 <= 6.2.7.4"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.2.9.0 <= 6.2.9.2
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.9.0 <= 6.2.9.2"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.5.0.0 <= 6.5.0.3
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.0.0 <= 6.5.0.3"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.5.1.0 <= 6.5.1.4
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.1.0 <= 6.5.1.4"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.5.2.0 <= 6.5.2.3
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.2.0 <= 6.5.2.3"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.5.3.0 <= 6.5.3.3
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.3.0 <= 6.5.3.3"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
>= 6.5.4.0. <= 6.5.4.3
Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.4.0. <= 6.5.4.3"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
6.2.7.0
Search vendor "Sonicwall" for product "Sonicos" and version "6.2.7.0"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
6.2.7.1
Search vendor "Sonicwall" for product "Sonicos" and version "6.2.7.1"
-
Affected
Sonicwall
Search vendor "Sonicwall"
Sonicos
Search vendor "Sonicwall" for product "Sonicos"
6.2.7.7
Search vendor "Sonicwall" for product "Sonicos" and version "6.2.7.7"
-
Affected