Lucene search
HistoryNov 25, 2022 - 3:15 p.m.
CVE-2022-38767
wind river
vxworks
denial of service
cve-2022-38767
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
41.8%
An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure.
Affected configurations
Node
windrivervxworksRange6.9–6.9.4.12
ORwindrivervxworksMatch6.9.4.12-
ORwindrivervxworksMatch6.9.4.12rolling_cumulative_patch_layer1
ORwindrivervxworksMatch6.9.4.12rolling_cumulative_patch_layer2
ORwindrivervxworksMatch6.9.4.12rolling_cumulative_patch_layer3
ORwindrivervxworksMatch6.9.4.12rolling_cumulative_patch_layer4
ORwindrivervxworksMatch6.9.4.12rolling_cumulative_patch_layer5
ORwindrivervxworksMatch7.0
Related
nessus
nessus
prion
prion
Design/Logic Flaw
2022-11-25 15:15:00
cvelist
cvelist
CVE-2022-38767
2022-11-25 00:00:00
ics
ics
Siemens RADIUS Client of SIPROTEC 5 Devices
2023-03-21 12:00:00
cve
cve
CVE-2022-38767
2022-11-25 15:15:10
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
41.8%
Related for NVD:CVE-2022-38767