CVE-2019-12263:Wind River VxWorks IPNET TCP stack vulnerability CVE-2019-12263: a buffer overflow in the TCP component caused by a race condition leading to TCP Urgent Pointer state confusion in 6.9.4 and vx7.

splash
Back

Description Preview

Wind River VxWorks 6.9.4 and vx7 contain a security vulnerability in the IPNET TCP/IP stack where a buffer overflow can occur in the TCP processing path due to a race condition that causes TCP Urgent Pointer state confusion. This issue, labeled CVE-2019-12263, is documented in Wind River advisories and is referenced by additional vendor advisories (Siemens, NetApp, SonicWall, F5). The affected releases include VxWorks 6.9.4 and vx7, and exploitation could potentially lead to crashes or other impacts from crafted TCP traffic.

Overview

This CVE documents a buffer overflow in Wind River VxWorks' IPNET TCP/IP stack (TCP component) caused by a race condition that leads to TCP Urgent Pointer state confusion, affecting 6.9.4 and vx7 deployments.

Remediation

  • Identify affected systems running Wind River VxWorks 6.9.4 or vx7 with the IPNET TCP/IP stack.
  • Apply the vendor-supplied patch or upgrade to a fixed IPNET/TCP stack version as provided in Wind River advisories for CVE-2019-12263.
  • If a patch is not immediately available, implement compensating controls:
    • Place affected devices behind firewalls or network segmentation to limit exposure to TCP traffic from untrusted sources.
    • Restrict or monitor TCP traffic to and from affected devices; disable unnecessary TCP services.
    • Implement strict access controls and IDS/IPS monitoring for abnormal TCP URGENT pointer usage.
  • Validate remediation by confirming patch application and re-testing TCP handling; monitor vendor advisories for new updates.

References

  • https://support2.windriver.com/index.php?page=security-notices
  • https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2019-0009
  • https://cert-portal.siemens.com/productcert/pdf/ssa-632562.pdf
  • https://security.netapp.com/advisory/ntap-20190802-0001/
  • https://www.windriver.com/security/announcements/tcp-ip-network-stack-ipnet-urgent11/
  • https://support2.windriver.com/index.php?page=cve&on=view&id=CVE-2019-12263
  • https://support.f5.com/csp/article/K41190253
  • https://cert-portal.siemens.com/productcert/pdf/ssa-189842.pdf
  • https://cert-portal.siemens.com/productcert/pdf/ssa-352504.pdf

Industry ExposureMost to least
This section illustrates the prevalence of a specific Common Vulnerabilities and Exposures (CVE) across various industries based on customer reports. The ranking displays industries from the most to least affected by this particular vulnerability, offering valuable insight into where this CVE has been most frequently observed. This information can help organizations within these sectors prioritize their security efforts, understand their relative risk exposure compared to their peers, and focus remediation strategies where they are most needed. By understanding the industry-specific impact, organizations can make more informed decisions regarding patching, resource allocation, and overall risk management related to this CVE.

  1. Manufacturing: Medium
    Manufacturing
  2. Health Care & Social Assistance: Medium
    Health Care & Social Assistance
  3. Public Administration: Medium
    Public Administration
  4. Professional, Scientific, & Technical Services: Low
    Professional, Scientific, & Technical Services
  5. Retail Trade: Low
    Retail Trade
  6. Utilities: Low
    Utilities
  7. Transportation & Warehousing: Low
    Transportation & Warehousing
  8. Other Services (except Public Administration): Low
    Other Services (except Public Administration)
  9. Agriculture, Forestry Fishing & Hunting: Low
    Agriculture, Forestry Fishing & Hunting
  10. Mining: Low
    Mining
  11. Accommodation & Food Services: Low
    Accommodation & Food Services
  12. Information: Low
    Information
  13. Arts, Entertainment & Recreation: Low
    Arts, Entertainment & Recreation
  14. Educational Services: Low
    Educational Services
  15. Finance and Insurance: Low
    Finance and Insurance
  16. Management of Companies & Enterprises: Low
    Management of Companies & Enterprises
  17. Administrative, Support, Waste Management & Remediation Services: Low
    Administrative, Support, Waste Management & Remediation Services
  18. Construction: Low
    Construction
  19. Real Estate Rental & Leasing: Low
    Real Estate Rental & Leasing
  20. Wholesale Trade: Low
    Wholesale Trade

Focus on What Matters

  1. See Everything.
  2. Identify True Risk.
  3. Proactively Mitigate Threats.

Let's talk!

background