9 matches found
Siemens SIMATIC Devices Race Condition (CVE-2024-26923)
In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc';...
Siemens SIMATIC Devices Use of Uninitialized Resource (CVE-2024-26901)
In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...
Siemens SIMATIC Devices Divide By Zero (CVE-2024-35925)
block: prevent division by zero in blkrqstatsum This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503787; scriptversion"1.1";...
Siemens SIMATIC Devices Race Condition (CVE-2024-27020)
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fix potential data-race in nftexprtypeget. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SIMATIC Devices Heap-based Buffer Overflow (CVE-2023-7104)
A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow. It is recommended to apply a...
Siemens SIMATIC Devices Out-of-bounds Write (CVE-2023-42753)
An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the h-nets array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local...
Siemens SIMATIC Devices Improper Input Validation (CVE-2023-4015)
The netfilter subsystem in the Linux kernel did not properly handle bound chain deactivation in certain circumstances. A local attacker could possibly use this to cause a denial of service system crash or execute arbitrary code. This plugin only works with Tenable.ot. Please visit...
Siemens SIMATIC Devices Improper Validation of Specified Quantity in Input (CVE-2024-35962)
netfilter: complete validation of user input This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503407; scriptversion"1.2";...
CVE-2022-34819
A vulnerability has been identified in SIMATIC CP 1242-7 V2 All versions = V2.0 = V2.0 = V2.0 = V2.0 = V2.0 V2.2.28, SIPLUS NET CP 1242-7 V2 All versions V3.3.46, SIPLUS NET CP 1543-1 All versions V3.0.22, SIPLUS S7-1200 CP 1243-1 All versions V3.3.46, SIPLUS S7-1200 CP 1243-1 RAIL All versions...