All customers except US A&D: to ensure that you can access all of your product downloads, you must log in to the Wind River Delivers portal https://delivers.windriver.com and visit the My Products page to force an initial sync of your product entitlement. Only after you’ve completed this step will you be able to access and download product content through the Artifacts, Registry, and Git interfaces. This also applies to users attempting to run the Wind River installer in maintenance or update mode or Linux installation updates at the command line.

Wind River Support Network

HomeCVE Database

The Common Vulnerabilities and Exposures (CVE) project, maintained by the MITRE Corporation, is a list of all standardized names for vulnerabilities and security exposures.

Reset
Showing
of 90736 entries
IDDescriptionPriorityModified dateFixed Release
CVE-2022-21907 HTTP Protocol Stack Remote Code Execution Vulnerability. -- Jan 13, 2022 n/a
CVE-2022-21906 Windows Defender Application Control Security Feature Bypass Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21905 Windows Hyper-V Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-21900. -- Jan 12, 2022 n/a
CVE-2022-21904 Windows GDI Information Disclosure Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21903 Windows GDI Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21902 Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21852, CVE-2022-21896. -- Jan 12, 2022 n/a
CVE-2022-21901 Windows Hyper-V Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21900 Windows Hyper-V Security Feature Bypass Vulnerability. This CVE ID is unique from CVE-2022-21905. -- Jan 12, 2022 n/a
CVE-2022-21899 Windows Extensible Firmware Interface Security Feature Bypass Vulnerability. -- Jan 13, 2022 n/a
CVE-2022-21898 DirectX Graphics Kernel Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21912. -- Jan 12, 2022 n/a
CVE-2022-21897 Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21916. -- Jan 12, 2022 n/a
CVE-2022-21896 Windows DWM Core Library Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21852, CVE-2022-21902. -- Jan 12, 2022 n/a
CVE-2022-21895 Windows User Profile Service Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21919. -- Jan 13, 2022 n/a
CVE-2022-21894 Secure Boot Security Feature Bypass Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21893 Remote Desktop Protocol Remote Code Execution Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21892 Windows Resilient File System (ReFS) Remote Code Execution Vulnerability. This CVE ID is unique from CVE-2022-21928, CVE-2022-21958, CVE-2022-21959, CVE-2022-21960, CVE-2022-21961, CVE-2022-21962, CVE-2022-21963. -- Jan 12, 2022 n/a
CVE-2022-21891 Microsoft Dynamics 365 (on-premises) Spoofing Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21890 Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21848, CVE-2022-21883, CVE-2022-21889. -- Jan 12, 2022 n/a
CVE-2022-21889 Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21848, CVE-2022-21883, CVE-2022-21890. -- Jan 12, 2022 n/a
CVE-2022-21888 Windows Modern Execution Server Remote Code Execution Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21887 Win32k Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21882. -- Jan 12, 2022 n/a
CVE-2022-21885 Windows Remote Access Connection Manager Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21914. -- Jan 12, 2022 n/a
CVE-2022-21884 Local Security Authority Subsystem Service Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21883 Windows IKE Extension Denial of Service Vulnerability. This CVE ID is unique from CVE-2022-21843, CVE-2022-21848, CVE-2022-21889, CVE-2022-21890. -- Jan 12, 2022 n/a
CVE-2022-21882 Win32k Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21887. -- Jan 12, 2022 n/a
CVE-2022-21881 Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21879. -- Jan 12, 2022 n/a
CVE-2022-21880 Windows GDI+ Information Disclosure Vulnerability. This CVE ID is unique from CVE-2022-21915. -- Jan 12, 2022 n/a
CVE-2022-21879 Windows Kernel Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-21881. -- Jan 12, 2022 n/a
CVE-2022-21878 Windows Geolocation Service Remote Code Execution Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21877 Storage Spaces Controller Information Disclosure Vulnerability. -- Jan 13, 2022 n/a
CVE-2022-21876 Win32k Information Disclosure Vulnerability. -- Jan 13, 2022 n/a
CVE-2022-21875 Windows Storage Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21874 Windows Security Center API Remote Code Execution Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21873 Tile Data Repository Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21872 Windows Event Tracing Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21871 Microsoft Diagnostics Hub Standard Collector Runtime Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21870 Tablet Windows User Interface Application Core Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21869 Clipboard User Service Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21868 Windows Devices Human Interface Elevation of Privilege Vulnerability. MEDIUM Jan 14, 2022 n/a
CVE-2022-21867 Windows Push Notifications Apps Elevation Of Privilege Vulnerability. MEDIUM Jan 14, 2022 n/a
CVE-2022-21866 Windows System Launcher Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21865 Connected Devices Platform Service Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21864 Windows UI Immersive Server API Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21863 Windows StateRepository API Server file Elevation of Privilege Vulnerability. MEDIUM Jan 14, 2022 n/a
CVE-2022-21862 Windows Application Model Core API Elevation of Privilege Vulnerability. MEDIUM Jan 14, 2022 n/a
CVE-2022-21861 Task Flow Data Engine Elevation of Privilege Vulnerability. HIGH Jan 15, 2022 n/a
CVE-2022-21860 Windows AppContracts API Server Elevation of Privilege Vulnerability. -- Jan 12, 2022 n/a
CVE-2022-21859 Windows Accounts Control Elevation of Privilege Vulnerability. MEDIUM Jan 14, 2022 n/a
CVE-2022-21858 Windows Bind Filter Driver Elevation of Privilege Vulnerability. HIGH Jan 14, 2022 n/a
CVE-2022-21857 Active Directory Domain Services Elevation of Privilege Vulnerability. HIGH Jan 14, 2022 n/a
The 'Fixed Release' column is displayed if a single product version is selected from the filter. The fixed release is applicable in cases when the CVE has been addressed and fixed for that product version. Requires LTSS - customers must have active LTSS (Long Term Security Shield) Support to receive up-to-date information about vulnerabilities that may affect legacy software. Please contact your Wind River account team or see https://docs.windriver.com/bundle/Support_and_Maintenance_Supplemental_Terms_and_Conditions and https://support2.windriver.com/index.php?page=plc for more information.
Live chat
Online