CVE-2023-51787

Name of the Vulnerable Software and Affected Versions Wind River VxWorks versions 7 22.09 through 7 23.03

Description The issue is related to memory release errors in the OpenSSL handler of the Wind River VxWorks real-time operating system. Exploitation of this issue can allow a remote attacker to cause a denial of service. The problem occurs when a VxWorks task or POSIX thread that uses OpenSSL exits, resulting in a memory leak due to limited per-task memory not being freed.

Recommendations For versions 7 22.09 and 7 23.03, consider restricting the use of OpenSSL in VxWorks tasks or POSIX threads to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.