CVE-2020-35198

Name of the Vulnerable Software and Affected Versions: Wind River VxWorks version 7

Description: An issue was discovered in the memory allocator, where there is a possible integer overflow when calculating the size of a memory block to be allocated by the calloc() function. This results in the actual memory allocated being smaller than the buffer size specified by the arguments, leading to memory corruption.

Recommendations: For Wind River VxWorks version 7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.