CVE-2010-2965
9.8 CRITICALThe WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A wit...
Published: 2010-08-05 · Last updated: 2026-05-28
Severity and scoring
- CVSS
- 9.8 CRITICAL
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-863
Affected products
| Vendor | Product |
|---|---|
| rockwellautomation | 1756-enbt\/a_firmware, vxworks |
| windriver | 1756-enbt\/a_firmware, vxworks |
Description
The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and earlier, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote attackers to read or modify arbitrary memory locations, perform function calls, or manage tasks via requests to UDP port 17185, a related issue to CVE-2005-3804.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2010-2965
- [Other]http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html
- [Other]http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735
- [Other]http://www.kb.cert.org/vuls/id/362332
- [Other]http://www.kb.cert.org/vuls/id/MAPG-86EPFA
- [Other]http://www.kb.cert.org/vuls/id/MAPG-86FPQL
- [Other]https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708
- [Other]http://blog.metasploit.com/2010/08/vxworks-vulnerabilities.html
- [Other]http://rockwellautomation.custhelp.com/cgi-bin/rockwellautomation.cfg/php/enduser/std_adp.php?p_faqid=69735
- [Other]http://seclists.org/fulldisclosure/2025/Jan/10
- [Other]http://www.kb.cert.org/vuls/id/362332
- [Other]http://www.kb.cert.org/vuls/id/MAPG-86EPFA
- [Other]http://www.kb.cert.org/vuls/id/MAPG-86FPQL
- [Other]https://support.windriver.com/olsPortal/faces/maintenance/downloadDetails.jspx?contentId=033708
Related CVEs
Same vendor
- CVE-2021-33012 — Rockwell Automation MicroLogix 1100, all versions, allows a remote, unauthenticated attacker sending specially crafted commands to cause ... (8.6 HIGH)
- CVE-2021-32926 — When an authenticated password change request takes place, this vulnerability could allow the attacker to intercept the message that incl... (7.5 HIGH)
- CVE-2021-22659 — Rockwell Automation MicroLogix 1400 Version 21.6 and below may allow a remote unauthenticated attacker to send a specially crafted Modbus... (8.6 HIGH)
- CVE-2020-6990 — Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versi... (9.8 CRITICAL)
- CVE-2020-6988 — Rockwell Automation MicroLogix 1400 Controllers Series B v21.001 and prior, Series A, all versions, MicroLogix 1100 Controller, all versi... (7.5 HIGH)
Same CWE
- CVE-2026-2470 — The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Incorrect Authorization in all versions... (4.3 MEDIUM)
- CVE-2026-54398 — An authorization flaw in MISP’s object add/edit handling allowed an authenticated user with object editing permissions to assign a MISP o...
- CVE-2026-53835 — OpenClaw before 2026.5.6 contains a configuration enforcement bypass vulnerability in Feishu dynamic-agent bindings that allows authentic... (4.3 MEDIUM)
- CVE-2026-53834 — OpenClaw before 2026.4.27 contains an authorization bypass vulnerability in QQBot pre-dispatch slash commands that allows authenticated s... (7.5 HIGH)
- CVE-2026-53828 — OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in native command handling that allows authenticated senders to e... (8.8 HIGH)