Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-38767

An issue was discovered in Wind River VxWorks 6.9 and 7, that allows a specifically crafted packet sent by a Radius server, may cause Denial of Service during the IP Radius access procedure.

Published

2022-11-25T15:15:10.453

Last Modified

2025-04-25T19:15:45.180

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	windriver	vxworks	< 6.9.4.12	Yes
Operating System	windriver	vxworks	6.9.4.12	Yes
Operating System	windriver	vxworks	6.9.4.12	Yes
Operating System	windriver	vxworks	6.9.4.12	Yes
Operating System	windriver	vxworks	6.9.4.12	Yes
Operating System	windriver	vxworks	6.9.4.12	Yes
Operating System	windriver	vxworks	6.9.4.12	Yes
Operating System	windriver	vxworks	7.0	Yes

References

https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2022-38767 Vendor Advisory ([email protected])
https://windriver.com Vendor Advisory ([email protected])
https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2022-38767 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://windriver.com Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)