2216 matches found
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50237)
wifi: mac80211: do not pass a stopped vif to the driver in .gettxpower Avoid potentially crashing in the driver because of uninitialized private data. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41070)
KVM: PPC: Book3S HV: UAF in kvmspaprtceattachiommugroup. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504613; scriptversion"1.3";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41091)
tun: add missing verification for short frame. Missing to check against the validity of the frame length in the tunxdpone path could cause a corrupted skb to be sent downstack. Even before the skb is transmitted, the tunxdpone--ethtypetrans may access the Ethernet header although it can be less...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56596)
jfs: array-index-out-of-bounds in jfsreaddir. The stbl might contain some invalid values. Added a check to return error code in that case. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49875)
nfsd: map the EBADMSG to nfserrio to avoid warning Ext4 will throw -EBADMSG through ext4readdir when a checksum error occurs. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-45008)
Input: missing limit on max slots results in too large allocation at inputmtinitslots. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504733;...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-42086)
iio: chemical: bme680: overflows in compensate functions. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504511; scriptversion"1.2";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53197)
ALSA: usb-audio: vulnerability leading to out-of-bound accesses due to a bogus device providing an excessive bNumConfigurations value, which is fixed by ensuring proper allocation in usbgetconfiguration. This plugin only works with Tenable.ot. Please visit...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56634)
gpio: grgpio: vulnerability due to a missing NULL check in grgpioprobe for the return value of devmkasprintf, leading to a kernel NULL pointer dereference error. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SCALANCE and RUGGEDCOM Devices NULL Pointer Dereference (CVE-2024-46677)
gtp: fix NULL pointer dereference. When sockfdlookup fails, gtpencapenablesocket returns a NULL pointer, but its callers only check for error pointers thus miss the NULL pointer case. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41065)
powerpc/pseries: Reading the dispatch trace log from /sys/kernel/debug/powerpc/dtl/cpu- results in a BUG. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53239)
ALSA: 6fire: The current 6fire code tries to release the resources right after the call of usb6firechipabort. But at this moment, the card object might be still in use as we're calling sndcardfreewhenclosed and cause potential UAFs. This plugin only works with Tenable.ot. Please visit...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56746)
fbdev: sh7760fb: vulnerability involves a potential memory leak in sh7760fballocmem where sh7760fbfreemem does not release memory correctly if info-screenbase is not ready, which is fixed by calling dmafreecoherent instead. This plugin only works with Tenable.ot. Please visit...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40987)
drm/amdgpu: UBSAN warning in kvdpm.c. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504482; scriptversion"1.2";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49867)
btrfs: wait for fixup workers before stopping cleaner kthread during umount During unmount, at closectree. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50051)
spi: mpc52xx: Add cancelworksync before module remove. If the module which will call mpc52xxspiremove is removed, it will free 'ms' through spiunregistercontroller. while the work ms-work will be used. The sequence of operations that may lead to a UAF bug. This plugin only works with Tenable.ot...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40981)
batman-adv: empty buckets in batadvpurgeorigref are pointing to soft lockups in batadvpurgeorigref. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50179)
ceph: incorrect Fw reference check when dirtying pages. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504801; scriptversion"1.3";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56562)
i3c: master: miss free initdynaddr at i3cmasterputi3caddrs. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504562; scriptversion"1.2";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40983)
tipc: possible crash before doing decryption. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504584; scriptversion"1.2";...