vulnerability

Wind River VxWorks: CVE-2019-12259: DoS via NULL dereference in IGMP parsing

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:N/AC:L/Au:N/C:N/I:N/A:P)	Jul 29, 2019	Oct 11, 2019	Oct 21, 2020

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Jul 29, 2019

Added

Oct 11, 2019

Modified

Oct 21, 2020

Description

Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and vx7 has an array index error in the IGMPv3 client component. There is an IPNET security vulnerability: DoS via NULL dereference in IGMP parsing. This is also known as Urgent/11.

Solution

vxworks-upgrade-latest

References

CVE-2019-12259
https://attackerkb.com/topics/CVE-2019-12259
URL-https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12259

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today