CVE-2019-12264
HIGHWind River VxWorks <6.9.5 - Privilege Escalation
Title source: llmDescription
Wind River VxWorks 6.6, 6.7, 6.8, 6.9.3, 6.9.4, and Vx7 has Incorrect Access Control in IPv4 assignment by the ipdhcpc DHCP client component.
References (5)
Scores
CVSS v3
7.1
EPSS
0.0008
EPSS Percentile
22.4%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Classification
CWE
CWE-88
Status
published
Affected Products (12)
windriver/vxworks
windriver/vxworks
windriver/vxworks
windriver/vxworks
windriver/vxworks
windriver/vxworks
belden/hirschmann_hios
< 07.0.07
belden/garrettcom_magnum_dx940e_firmware
< 1.0.1_y7
siemens/ruggedcom_win7000_firmware
< bs5.2.461.17
siemens/ruggedcom_win7018_firmware
< bs5.2.461.17
siemens/ruggedcom_win7025_firmware
< bs5.2.461.17
siemens/ruggedcom_win7200_firmware
< bs5.2.461.17
Timeline
Published
Aug 05, 2019
Tracked Since
Feb 18, 2026