7.1
CVE-2019-12264
- EPSS 0.25%
- Veröffentlicht 05.08.2019 18:15:10
- Zuletzt bearbeitet 21.11.2024 04:22:31
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
Wind River VxWorks 6.6, 6.7, 6.8, 6.9.3, 6.9.4, and Vx7 has Incorrect Access Control in IPv4 assignment by the ipdhcpc DHCP client component.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Belden ≫ Hirschmann Hios Version <= 07.0.07
Belden ≫ Hirschmann Ees20 Version-
Belden ≫ Hirschmann Ees25 Version-
Belden ≫ Hirschmann Eesx20 Version-
Belden ≫ Hirschmann Eesx30 Version-
Belden ≫ Hirschmann Grs1020 Version-
Belden ≫ Hirschmann Grs1030 Version-
Belden ≫ Hirschmann Grs1042 Version-
Belden ≫ Hirschmann Grs1120 Version-
Belden ≫ Hirschmann Grs1130 Version-
Belden ≫ Hirschmann Grs1142 Version-
Belden ≫ Hirschmann Msp30 Version-
Belden ≫ Hirschmann Msp32 Version-
Belden ≫ Hirschmann Rail Switch Power Lite Version-
Belden ≫ Hirschmann Rail Switch Power Smart Version-
Belden ≫ Hirschmann Red25 Version-
Belden ≫ Hirschmann Rsp20 Version-
Belden ≫ Hirschmann Rsp25 Version-
Belden ≫ Hirschmann Rsp30 Version-
Belden ≫ Hirschmann Rsp35 Version-
Belden ≫ Hirschmann Rspe30 Version-
Belden ≫ Hirschmann Rspe32 Version-
Belden ≫ Hirschmann Rspe35 Version-
Belden ≫ Hirschmann Rspe37 Version-
Belden ≫ Hirschmann Ees25 Version-
Belden ≫ Hirschmann Eesx20 Version-
Belden ≫ Hirschmann Eesx30 Version-
Belden ≫ Hirschmann Grs1020 Version-
Belden ≫ Hirschmann Grs1030 Version-
Belden ≫ Hirschmann Grs1042 Version-
Belden ≫ Hirschmann Grs1120 Version-
Belden ≫ Hirschmann Grs1130 Version-
Belden ≫ Hirschmann Grs1142 Version-
Belden ≫ Hirschmann Msp30 Version-
Belden ≫ Hirschmann Msp32 Version-
Belden ≫ Hirschmann Rail Switch Power Lite Version-
Belden ≫ Hirschmann Rail Switch Power Smart Version-
Belden ≫ Hirschmann Red25 Version-
Belden ≫ Hirschmann Rsp20 Version-
Belden ≫ Hirschmann Rsp25 Version-
Belden ≫ Hirschmann Rsp30 Version-
Belden ≫ Hirschmann Rsp35 Version-
Belden ≫ Hirschmann Rspe30 Version-
Belden ≫ Hirschmann Rspe32 Version-
Belden ≫ Hirschmann Rspe35 Version-
Belden ≫ Hirschmann Rspe37 Version-
Belden ≫ Hirschmann Hios Version <= 07.5.01
Belden ≫ Hirschmann Hios Version <= 07.2.04
Belden ≫ Hirschmann Hios Version <= 05.3.06
Belden ≫ Hirschmann Eagle One Version-
Belden ≫ Hirschmann Eagle20 Version-
Belden ≫ Hirschmann Eagle30 Version-
Belden ≫ Hirschmann Eagle20 Version-
Belden ≫ Hirschmann Eagle30 Version-
Belden ≫ Garrettcom Magnum Dx940e Firmware Version <= 1.0.1_y7
Siemens ≫ Ruggedcom Win7000 Firmware Version < bs5.2.461.17
Siemens ≫ Ruggedcom Win7018 Firmware Version < bs5.2.461.17
Siemens ≫ Ruggedcom Win7025 Firmware Version < bs5.2.461.17
Siemens ≫ Ruggedcom Win7200 Firmware Version < bs5.2.461.17
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.25% | 0.486 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 2.8 | 4.2 |
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
|
| nvd@nist.gov | 4.8 | 6.5 | 4.9 |
AV:A/AC:L/Au:N/C:N/I:P/A:P
|
CWE-88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.