CVE-2019-12258
URGENT/11 Scanner, Based On Detection Tool By Armis
Severity Score
7.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Wind River VxWorks 6.6 through vx7 has Session Fixation in the TCP component. This is a IPNET security vulnerability: DoS of TCP connection via malformed TCP options.
Wind River VxWorks versiones 6.6 hasta vx7, presenta una Fijación de Sesión en el componente TCP. Se trata de una vulnerabilidad de seguridad de IPNET: DoS de la conexión TCP por medio de opciones TCP malformadas.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2019-05-21 CVE Reserved
- 2019-08-09 CVE Published
- 2024-08-02 EPSS Updated
- 2024-08-04 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-384: Session Fixation
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf/ssa-189842.pdf | Third Party Advisory |
|
| https://cert-portal.siemens.com/productcert/pdf/ssa-352504.pdf | Third Party Advisory |
|
| https://cert-portal.siemens.com/productcert/pdf/ssa-632562.pdf | Third Party Advisory |
|
| https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0009 | Third Party Advisory |
|
| https://security.netapp.com/advisory/ntap-20190802-0001 | Third Party Advisory |
|
| https://support.f5.com/csp/article/K41190253 | Third Party Advisory | |
| https://armis.com/urgent11 | ||
| https://github.com/ArmisSecurity/urgent11-detector |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Siemens Search vendor "Siemens" | Siprotec 5 Firmware Search vendor "Siemens" for product "Siprotec 5 Firmware" | < 7.59 Search vendor "Siemens" for product "Siprotec 5 Firmware" and version " < 7.59" | cp200 |
Affected
| in | Siemens Search vendor "Siemens" | Siprotec 5 Search vendor "Siemens" for product "Siprotec 5" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Siprotec 5 Firmware Search vendor "Siemens" for product "Siprotec 5 Firmware" | < 7.91 Search vendor "Siemens" for product "Siprotec 5 Firmware" and version " < 7.91" | cp300 |
Affected
| in | Siemens Search vendor "Siemens" | Siprotec 5 Search vendor "Siemens" for product "Siprotec 5" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Power Meter 9410 Firmware Search vendor "Siemens" for product "Power Meter 9410 Firmware" | < 2.2.1 Search vendor "Siemens" for product "Power Meter 9410 Firmware" and version " < 2.2.1" | - |
Affected
| in | Siemens Search vendor "Siemens" | Power Meter 9410 Search vendor "Siemens" for product "Power Meter 9410" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Power Meter 9810 Firmware Search vendor "Siemens" for product "Power Meter 9810 Firmware" | * | - |
Affected
| in | Siemens Search vendor "Siemens" | Power Meter 9810 Search vendor "Siemens" for product "Power Meter 9810" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Ruggedcom Win7000 Firmware Search vendor "Siemens" for product "Ruggedcom Win7000 Firmware" | < bs5.2.461.17 Search vendor "Siemens" for product "Ruggedcom Win7000 Firmware" and version " < bs5.2.461.17" | - |
Affected
| in | Siemens Search vendor "Siemens" | Ruggedcom Win7000 Search vendor "Siemens" for product "Ruggedcom Win7000" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Ruggedcom Win7018 Firmware Search vendor "Siemens" for product "Ruggedcom Win7018 Firmware" | < bs5.2.461.17 Search vendor "Siemens" for product "Ruggedcom Win7018 Firmware" and version " < bs5.2.461.17" | - |
Affected
| in | Siemens Search vendor "Siemens" | Ruggedcom Win7018 Search vendor "Siemens" for product "Ruggedcom Win7018" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Ruggedcom Win7025 Firmware Search vendor "Siemens" for product "Ruggedcom Win7025 Firmware" | < bs5.2.461.17 Search vendor "Siemens" for product "Ruggedcom Win7025 Firmware" and version " < bs5.2.461.17" | - |
Affected
| in | Siemens Search vendor "Siemens" | Ruggedcom Win7025 Search vendor "Siemens" for product "Ruggedcom Win7025" | - | - |
Safe
|
| Siemens Search vendor "Siemens" | Ruggedcom Win7200 Firmware Search vendor "Siemens" for product "Ruggedcom Win7200 Firmware" | < bs5.2.461.17 Search vendor "Siemens" for product "Ruggedcom Win7200 Firmware" and version " < bs5.2.461.17" | - |
Affected
| in | Siemens Search vendor "Siemens" | Ruggedcom Win7200 Search vendor "Siemens" for product "Ruggedcom Win7200" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Ees20 Search vendor "Belden" for product "Hirschmann Ees20" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Ees25 Search vendor "Belden" for product "Hirschmann Ees25" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Eesx20 Search vendor "Belden" for product "Hirschmann Eesx20" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Eesx30 Search vendor "Belden" for product "Hirschmann Eesx30" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Grs1020 Search vendor "Belden" for product "Hirschmann Grs1020" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Grs1030 Search vendor "Belden" for product "Hirschmann Grs1030" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Grs1042 Search vendor "Belden" for product "Hirschmann Grs1042" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Grs1120 Search vendor "Belden" for product "Hirschmann Grs1120" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Grs1130 Search vendor "Belden" for product "Hirschmann Grs1130" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Grs1142 Search vendor "Belden" for product "Hirschmann Grs1142" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Msp30 Search vendor "Belden" for product "Hirschmann Msp30" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Msp32 Search vendor "Belden" for product "Hirschmann Msp32" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rail Switch Power Lite Search vendor "Belden" for product "Hirschmann Rail Switch Power Lite" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rail Switch Power Smart Search vendor "Belden" for product "Hirschmann Rail Switch Power Smart" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Red25 Search vendor "Belden" for product "Hirschmann Red25" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rsp20 Search vendor "Belden" for product "Hirschmann Rsp20" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rsp25 Search vendor "Belden" for product "Hirschmann Rsp25" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rsp30 Search vendor "Belden" for product "Hirschmann Rsp30" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rsp35 Search vendor "Belden" for product "Hirschmann Rsp35" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rspe30 Search vendor "Belden" for product "Hirschmann Rspe30" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rspe32 Search vendor "Belden" for product "Hirschmann Rspe32" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rspe35 Search vendor "Belden" for product "Hirschmann Rspe35" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.0.07 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.0.07" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Rspe37 Search vendor "Belden" for product "Hirschmann Rspe37" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.5.01 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.5.01" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Msp40 Search vendor "Belden" for product "Hirschmann Msp40" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.5.01 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.5.01" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Octopus Os3 Search vendor "Belden" for product "Hirschmann Octopus Os3" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.2.04 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.2.04" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Dragon Mach4000 Search vendor "Belden" for product "Hirschmann Dragon Mach4000" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 07.2.04 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 07.2.04" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Dragon Mach4500 Search vendor "Belden" for product "Hirschmann Dragon Mach4500" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 05.3.06 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 05.3.06" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Eagle One Search vendor "Belden" for product "Hirschmann Eagle One" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 05.3.06 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 05.3.06" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Eagle20 Search vendor "Belden" for product "Hirschmann Eagle20" | - | - |
Safe
|
| Belden Search vendor "Belden" | Hirschmann Hios Search vendor "Belden" for product "Hirschmann Hios" | <= 05.3.06 Search vendor "Belden" for product "Hirschmann Hios" and version " <= 05.3.06" | - |
Affected
| in | Belden Search vendor "Belden" | Hirschmann Eagle30 Search vendor "Belden" for product "Hirschmann Eagle30" | - | - |
Safe
|
| Belden Search vendor "Belden" | Garrettcom Magnum Dx940e Firmware Search vendor "Belden" for product "Garrettcom Magnum Dx940e Firmware" | <= 1.0.1_y7 Search vendor "Belden" for product "Garrettcom Magnum Dx940e Firmware" and version " <= 1.0.1_y7" | - |
Affected
| in | Belden Search vendor "Belden" | Garrettcom Magnum Dx940e Search vendor "Belden" for product "Garrettcom Magnum Dx940e" | - | - |
Safe
|
| Windriver Search vendor "Windriver" | Vxworks Search vendor "Windriver" for product "Vxworks" | >= 6.5 < 6.9.4.12 Search vendor "Windriver" for product "Vxworks" and version " >= 6.5 < 6.9.4.12" | - |
Affected
| ||||||
| Windriver Search vendor "Windriver" | Vxworks Search vendor "Windriver" for product "Vxworks" | 7.0 Search vendor "Windriver" for product "Vxworks" and version "7.0" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 5.9.0.0 <= 5.9.0.7 Search vendor "Sonicwall" for product "Sonicos" and version " >= 5.9.0.0 <= 5.9.0.7" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 5.9.1.0. <= 5.9.1.12 Search vendor "Sonicwall" for product "Sonicos" and version " >= 5.9.1.0. <= 5.9.1.12" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.2.0.0 <= 6.2.3.1 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.0.0 <= 6.2.3.1" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.2.4.0 <= 6.2.4.3 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.4.0 <= 6.2.4.3" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.2.5.0 <= 6.2.5.3 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.5.0 <= 6.2.5.3" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.2.6.0 <= 6.2.6.1 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.6.0 <= 6.2.6.1" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.2.7.0 <= 6.2.7.4 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.7.0 <= 6.2.7.4" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.2.9.0 <= 6.2.9.2 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.2.9.0 <= 6.2.9.2" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.5.0.0 <= 6.5.0.3 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.0.0 <= 6.5.0.3" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.5.1.0 <= 6.5.1.4 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.1.0 <= 6.5.1.4" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.5.2.0 <= 6.5.2.3 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.2.0 <= 6.5.2.3" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.5.3.0 <= 6.5.3.3 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.3.0 <= 6.5.3.3" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | >= 6.5.4.0. <= 6.5.4.3 Search vendor "Sonicwall" for product "Sonicos" and version " >= 6.5.4.0. <= 6.5.4.3" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | 6.2.7.0 Search vendor "Sonicwall" for product "Sonicos" and version "6.2.7.0" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | 6.2.7.1 Search vendor "Sonicwall" for product "Sonicos" and version "6.2.7.1" | - |
Affected
| ||||||
| Sonicwall Search vendor "Sonicwall" | Sonicos Search vendor "Sonicwall" for product "Sonicos" | 6.2.7.7 Search vendor "Sonicwall" for product "Sonicos" and version "6.2.7.7" | - |
Affected
| ||||||
| Netapp Search vendor "Netapp" | E-series Santricity Os Controller Search vendor "Netapp" for product "E-series Santricity Os Controller" | >= 8.00 <= 8.40.50.00 Search vendor "Netapp" for product "E-series Santricity Os Controller" and version " >= 8.00 <= 8.40.50.00" | - |
Affected
| ||||||