CVE-2019-12262
CRITICAL EPSS 89.5%
Published Aug 14, 20196y ago · Modified Jun 17, 20262w ago
9.8 CVSS 3.1
Published Aug 14, 2019 6y ago
Last Modified Jun 17, 2026 2w ago
Description
Wind River VxWorks 6.6, 6.7, 6.8, 6.9 and 7 has Incorrect Access Control in the RARP client component. IPNET security vulnerability: Handling of unsolicited Reverse ARP replies (Logical Flaw).
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality High
Integrity High
Availability High
Threat Intelligence
EPSS Exploit Probability
89.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Affected Products 49
| Vendor | Product | Version | Range |
|---|---|---|---|
| windriver | vxworks | 6.6 | any |
| windriver | vxworks | 6.7 | any |
| windriver | vxworks | 6.8 | any |
| windriver | vxworks | 6.9 | any |
| windriver | vxworks | 7.0 | any |
| belden | hirschmann_hios | * | ≤07.0.07 |
| belden | hirschmann_ees20 | * | any |
| belden | hirschmann_ees25 | * | any |
| belden | hirschmann_eesx20 | * | any |
| belden | hirschmann_eesx30 | * | any |
| belden | hirschmann_grs1020 | * | any |
| belden | hirschmann_grs1030 | * | any |
| belden | hirschmann_grs1042 | * | any |
| belden | hirschmann_grs1120 | * | any |
| belden | hirschmann_grs1130 | * | any |
| belden | hirschmann_grs1142 | * | any |
| belden | hirschmann_msp30 | * | any |
| belden | hirschmann_msp32 | * | any |
| belden | hirschmann_rail_switch_power_lite | * | any |
| belden | hirschmann_rail_switch_power_smart | * | any |
| belden | hirschmann_red25 | * | any |
| belden | hirschmann_rsp20 | * | any |
| belden | hirschmann_rsp25 | * | any |
| belden | hirschmann_rsp30 | * | any |
| belden | hirschmann_rsp35 | * | any |
| belden | hirschmann_rspe30 | * | any |
| belden | hirschmann_rspe32 | * | any |
| belden | hirschmann_rspe35 | * | any |
| belden | hirschmann_rspe37 | * | any |
| belden | hirschmann_hios | * | ≤07.5.01 |
| belden | hirschmann_msp40 | * | any |
| belden | hirschmann_octopus_os3 | * | any |
| belden | hirschmann_hios | * | ≤07.2.04 |
| belden | hirschmann_dragon_mach4000 | * | any |
| belden | hirschmann_dragon_mach4500 | * | any |
| belden | hirschmann_hios | * | ≤05.3.06 |
| belden | hirschmann_eagle_one | * | any |
| belden | hirschmann_eagle20 | * | any |
| belden | hirschmann_eagle30 | * | any |
| belden | garrettcom_magnum_dx940e_firmware | * | ≤1.0.1_y7 |
| belden | garrettcom_magnum_dx940e | * | any |
| siemens | ruggedcom_win7000_firmware | * | <bs5.2.461.17 |
| siemens | ruggedcom_win7000 | * | any |
| siemens | ruggedcom_win7018_firmware | * | <bs5.2.461.17 |
| siemens | ruggedcom_win7018 | * | any |
| siemens | ruggedcom_win7025_firmware | * | <bs5.2.461.17 |
| siemens | ruggedcom_win7025 | * | any |
| siemens | ruggedcom_win7200_firmware | * | <bs5.2.461.17 |
| siemens | ruggedcom_win7200 | * | any |
References 4
- cert-portal.siemens.com https://cert-portal.siemens.com/productcert/pdf/ssa-189842.pdf
- cert-portal.siemens.com https://cert-portal.siemens.com/productcert/pdf/ssa-352504.pdf
- support.f5.com https://support.f5.com/csp/article/K41190253
- support2.windriver.com https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12262
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.