Resource Library
Security BulletinsVisibilityRiskFebruary 15, 2024

Protect VxWorks from URGENT/11 Vulnerabilities with ORDR

VxWorks devices remain critically vulnerable to URGENT/11 exploits despite years of disclosure. This bulletin reveals which CVEs pose active threats, how to identify affected devices in your environment, and practical strategies for mitigation when patching isn't immediately possible. Learn to prioritize remediation based on real-world exploitation risks.

What you'll learn

  • Identify which URGENT/11 CVEs pose the greatest active threat to your infrastructure
  • Detect VxWorks devices vulnerable to exploitation using manufacturer advisories and scanning
  • Implement compensating controls for devices that cannot be patched immediately

Access resource

Protect VxWorks from URGENT/11 Vulnerabilities with ORDR

Frequently asked questions
Which URGENT/11 CVEs are still actively exploited against VxWorks devices?
Not all URGENT/11 CVEs pose equal risk—some have higher exploitation rates in the wild than others. ORDR's bulletin analyzes which specific CVEs warrant immediate attention based on real-world threat intelligence, helping you prioritize remediation efforts where they matter most.
How can I find VxWorks devices vulnerable to URGENT/11 in my network?
VxWorks devices can be identified through manufacturer advisories, firmware version analysis, and targeted scanning techniques. ORDR provides practical detection strategies that leverage both scanning methods and asset intelligence to build an accurate inventory of at-risk devices in your environment.
What should I do if I can't patch VxWorks devices immediately?
Compensating controls—such as network segmentation, access restrictions, and behavioral monitoring—can significantly reduce exploitation risk while patches are being deployed. ORDR outlines practical mitigation strategies tailored to devices that cannot be patched immediately, allowing you to manage risk in the interim.
Related resources

Solution Briefs

ORDR and Qualys Cloud Platform

Solution Briefs

Uncover What’s Hidden: Full IoT, OT, and IoMT Network Visibility with ORDR and Garland Technology

Partner Brief

Dragos + ORDR: Unified OT Visibility and Intelligent Network Segmentation

Solution Briefs

ORDR + Carbon Black

This resource is published by ORDR, the connected asset security company. ORDR delivers AI-powered visibility, risk assessment, and automated protection for IoT, OT, and IoMT devices across healthcare, manufacturing, government, and financial environments. Browse all resources →