VDB
CVE-2022-38767
CVE-2022-38767
PUBLISHED
Es existiert eine Schwachstelle in Wind River VxWorks. Es ist möglich durch das Senden eines manipulierten Radius Paketes einen Absturz zu verursachen. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service Zustand herbeizuführen.
EPSS 0.26% · 50.0th percentile
Risk Scores
EPSS Score
0.26%
50.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Siemens SIPROTEC 5 < 9.30 | |
| Wind River | Wind River VxWorks 6.9 | |
| Wind River | Wind River VxWorks 7 |
Timeline
- Nov 25, 2022 CVE Published
- Nov 26, 2022 EPSS Score
- Dec 2, 2022 EPSS Score
- Jan 7, 2023 EPSS Score
- Feb 19, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 15, 2023 EPSS Score
- Jun 26, 2023 EPSS Score
- Sep 19, 2023 EPSS Score
- Nov 1, 2023 EPSS Score
- Dec 13, 2023 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-2180.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-2180 advisory
- https://cert-portal.siemens.com/productcert/html/ssa-726834.html advisory
- https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2022-38767 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-38767 advisory