Vulnerability Name:

CVE-2019-12264 (CCN-164440)

Assigned:2019-07-29
Published:2019-07-29
Updated:2022-06-16
Summary:Wind River VxWorks 6.6, 6.7, 6.8, 6.9.3, 6.9.4, and Vx7 has Incorrect Access Control in IPv4 assignment by the ipdhcpc DHCP client component.
CVSS v3 Severity:7.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H)
6.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): High
8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Adjacent
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:4.8 Medium (CVSS v2 Vector: AV:A/AC:L/Au:N/C:N/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): Partial
8.3 High (CCN CVSS v2 Vector: AV:A/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Adjacent_Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-88
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2019-12264

Source: CCN
Type: ARMIS Web site
URGENT/11

Source: CONFIRM
Type: Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-189842.pdf

Source: XF
Type: UNKNOWN
windriver-cve201912264-dos(164440)

Source: CONFIRM
Type: Third Party Advisory
https://support.f5.com/csp/article/K41190253

Source: CONFIRM
Type: Third Party Advisory
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03960en_us

Source: CCN
Type: Wind River Web site
CVE-2019-12264

Source: MISC
Type: Vendor Advisory
https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12264

Source: CONFIRM
Type: Vendor Advisory
https://www.windriver.com/security/announcements/tcp-ip-network-stack-ipnet-urgent11/

Vulnerable Configuration:Configuration 1:
  • cpe:/o:windriver:vxworks:6.8:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:vxworks:6.7:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:vxworks:6.9.4:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:vxworks:6.6:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:vxworks:6.9.3:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:vxworks:7.0:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:belden:hirschmann_hios:*:*:*:*:*:*:*:* (Version <= 07.0.07)
  • AND
  • cpe:/h:belden:hirschmann_rail_switch_power_lite:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_rail_switch_power_smart:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_red25:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_grs1042:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_grs1142:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_grs1020:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_grs1120:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_grs1030:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_grs1130:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_eesx20:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_ees20:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_ees25:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_eesx30:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_msp30:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_msp32:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_rsp20:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_rsp25:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_rsp30:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_rsp35:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_rspe30:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_rspe32:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_rspe35:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_rspe37:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:belden:hirschmann_hios:*:*:*:*:*:*:*:* (Version <= 07.5.01)
  • AND
  • cpe:/h:belden:hirschmann_octopus_os3:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_msp40:-:*:*:*:*:*:*:*

    • Configuration 4:
  • cpe:/o:belden:hirschmann_hios:*:*:*:*:*:*:*:* (Version <= 07.2.04)
  • AND
  • cpe:/h:belden:hirschmann_dragon_mach4000:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_dragon_mach4500:-:*:*:*:*:*:*:*

    • Configuration 5:
  • cpe:/o:belden:hirschmann_hios:*:*:*:*:*:*:*:* (Version <= 05.3.06)
  • AND
  • cpe:/h:belden:hirschmann_eagle20:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_eagle30:-:*:*:*:*:*:*:*
  • OR cpe:/h:belden:hirschmann_eagle_one:-:*:*:*:*:*:*:*

    • Configuration 6:
  • cpe:/o:belden:garrettcom_magnum_dx940e_firmware:*:*:*:*:*:*:*:* (Version <= 1.0.1_y7)
  • AND
  • cpe:/h:belden:garrettcom_magnum_dx940e:-:*:*:*:*:*:*:*

    • Configuration 7:
  • cpe:/o:siemens:ruggedcom_win7000_firmware:*:*:*:*:*:*:*:* (Version < bs5.2.461.17)
  • AND
  • cpe:/h:siemens:ruggedcom_win7000:-:*:*:*:*:*:*:*

    • Configuration 8:
  • cpe:/o:siemens:ruggedcom_win7018_firmware:*:*:*:*:*:*:*:* (Version < bs5.2.461.17)
  • AND
  • cpe:/h:siemens:ruggedcom_win7018:-:*:*:*:*:*:*:*

    • Configuration 9:
  • cpe:/o:siemens:ruggedcom_win7025_firmware:*:*:*:*:*:*:*:* (Version < bs5.2.461.17)
  • AND
  • cpe:/h:siemens:ruggedcom_win7025:-:*:*:*:*:*:*:*

    • Configuration 10:
  • cpe:/o:siemens:ruggedcom_win7200_firmware:*:*:*:*:*:*:*:* (Version < bs5.2.461.17)
  • AND
  • cpe:/h:siemens:ruggedcom_win7200:-:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:windriver:vxworks:6.6:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:vxworks:6.7:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:vxworks:6.8:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:vxworks:6.9:*:*:*:*:*:*:*
  • OR cpe:/o:windriver:vxworks:7.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    windriver vxworks 6.8
    windriver vxworks 6.7
    windriver vxworks 6.9.4
    windriver vxworks 6.6
    windriver vxworks 6.9.3
    windriver vxworks 7.0
    belden hirschmann hios *
    belden hirschmann rail switch power lite -
    belden hirschmann rail switch power smart -
    belden hirschmann red25 -
    belden hirschmann grs1042 -
    belden hirschmann grs1142 -
    belden hirschmann grs1020 -
    belden hirschmann grs1120 -
    belden hirschmann grs1030 -
    belden hirschmann grs1130 -
    belden hirschmann eesx20 -
    belden hirschmann ees20 -
    belden hirschmann ees25 -
    belden hirschmann eesx30 -
    belden hirschmann msp30 -
    belden hirschmann msp32 -
    belden hirschmann rsp20 -
    belden hirschmann rsp25 -
    belden hirschmann rsp30 -
    belden hirschmann rsp35 -
    belden hirschmann rspe30 -
    belden hirschmann rspe32 -
    belden hirschmann rspe35 -
    belden hirschmann rspe37 -
    belden hirschmann hios *
    belden hirschmann octopus os3 -
    belden hirschmann msp40 -
    belden hirschmann hios *
    belden hirschmann dragon mach4000 -
    belden hirschmann dragon mach4500 -
    belden hirschmann hios *
    belden hirschmann eagle20 -
    belden hirschmann eagle30 -
    belden hirschmann eagle one -
    belden garrettcom magnum dx940e firmware *
    belden garrettcom magnum dx940e -
    siemens ruggedcom win7000 firmware *
    siemens ruggedcom win7000 -
    siemens ruggedcom win7018 firmware *
    siemens ruggedcom win7018 -
    siemens ruggedcom win7025 firmware *
    siemens ruggedcom win7025 -
    siemens ruggedcom win7200 firmware *
    siemens ruggedcom win7200 -
    windriver vxworks 6.6
    windriver vxworks 6.7
    windriver vxworks 6.8
    windriver vxworks 6.9
    windriver vxworks 7.0