The Cybersecurity and Infrastructure Security Agency (CISA) has released an Industrial Control Systems (ICS) Advisory on multiple vulnerabilities in the Wind River VxWorks Platform. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.
CISA encourages users and administrators to review the following products, apply the recommended mitigations, and refer to vendors for appropriate patches, when available.
- ICS Advisory ICSA-19-211-01
- Canadian Centre for Cyber Security Alert AL19-015
- Wind River Security Bulletin TCP/IP Network Stack
This product is provided subject to this Notification and this Privacy & Use policy.