2216 matches found
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-44954)
ALSA: line6: vulnerability involved racy access to the midibuf in the ALSA line6 driver, which has been fixed by using a spinlock to prevent concurrent access issues. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEV...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41091)
tun: add missing verification for short frame. Missing to check against the validity of the frame length in the tunxdpone path could cause a corrupted skb to be sent downstack. Even before the skb is transmitted, the tunxdpone--ethtypetrans may access the Ethernet header although it can be less...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46758)
hwmon: lm95234 underflows seen when writing limit attributes DIVROUNDCLOSEST after kstrtol results in an underflow if a large negative number such as -9223372036854775808 is provided by the user. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...
Siemens SCALANCE and RUGGEDCOM Devices Improper Locking (CVE-2024-44952)
driver core: vulnerability due to a potential deadlock due to improper handling of device attributes and driver detachment, which has been fixed by using synchronizercu to prevent race conditions. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46757)
hwmon: nct6775-core underflows seen when writing limit attributes DIVROUNDCLOSEST after kstrtol results in an underflow if a large negative number such as -9223372036854775808 is provided by the user. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2023-52917)
ntb: intel: Fix the NULL vs ISERR bug for debugfscreatedir. The debugfscreatedir function returns error pointers. It never returns NULL. So use ISERR to check it. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56610)
kcsan: Turn reportfilterlistlock into a rawspinlock, with a KCSAN- enabled PREEMPTRT kernel, we can see splats like sleeping function called from invalid context at kernel/locking/spinlockrt.c:48. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...
Siemens SCALANCE and RUGGEDCOM Devices Improper Handling of Unexpected Data Type (CVE-2024-56636)
geneve: vulnerability in genevexmitskb arises from incorrectly assuming the MAC header is set in the output path, which can lead to errors. The fix involves using skbethhdr instead of ethhdr to ensure the MAC header is correctly referenced, preventing potential issues. This plugin only works with...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49882)
ext4: In ext4exttrytomergeup, path1.pbh should be set to NULL after it has been released, otherwise it may be released twice. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50082)
blk-rq-qos: vulnerability in blk-rq-qos can cause a crash due to a race condition between rqqoswait and rqqoswakefunction, which is fixed by ensuring the waitqueue entry is accessed in the correct order. This plugin only works with Tenable.ot. Please visit...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56630)
ocfs2: iput is not called when newinode succeeded and dquotinitialize failed. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504545;...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46771)
can: bcm: Remove proc entry when dev is unregistered. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504624; scriptversion"1.3";...
Siemens SCALANCE and RUGGEDCOM Devices Use After Free (CVE-2024-41012)
filelock: Remove locks reliably when fcntl/close race is detected When fcntlsetlk races with close, it removes the created lock with dolockfilewait. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46714)
drm/amd/display: Skip wbsclsetscalerfilter if filter is null Callers can pass null in filter i.e. from returned from the function wbsclgetfiltercoeffs16p and a null check is added to ensure that is not the case. This plugin only works with Tenable.ot. Please visit...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56634)
gpio: grgpio: vulnerability due to a missing NULL check in grgpioprobe for the return value of devmkasprintf, leading to a kernel NULL pointer dereference error. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41081)
ila: block BH in ilaoutput. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504571; scriptversion"1.2";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-42229)
crypto: aead,cipher - key buffer after use not zeroized. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504477; scriptversion"1.2";...
Siemens SCALANCE and RUGGEDCOM Devices NULL Pointer Dereference (CVE-2024-49913)
drm/amd/display: missing null check for toppipetoprogram in commitplanesforstream. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504619;...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40904)
USB: class: cdc-wdm: CPU lockup caused by excessive log messages. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504488; scriptversion"1.2";...
Siemens SCALANCE and RUGGEDCOM Devices Use After Free (CVE-2024-50269)
usb: musb: sunxi: accessing an released usb phy will cause that usb phy @glue-xceiv is accessed after released. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...