CVE-2019-12258

Name of the Vulnerable Software and Affected Versions Wind River VxWorks versions 6.6 through 7

Description The issue is related to errors in forming TCP options in the TCP component, which can lead to a denial of service (DoS) of TCP connections via malformed TCP options. This can be exploited by a remote attacker to cause a service disruption.

Recommendations For versions 6.6 through 7, consider disabling the TCP component or restricting its use until a patch is available to prevent exploitation of the session fixation vulnerability.