114 matches found
Siemens多款产品 跨站脚本漏洞
The Siemens SIMATIC Drive Controller is a series of drive controllers developed by the German company Siemens. Several Siemens products have a cross-site scripting vulnerability. This vulnerability arises from improper validation and cleaning of PLC/site names on the Web interface communication...
Siemens RUGGEDCOM, SCALANCE and SIMATIC Out-of-bounds Read (CVE-2021-3712)
ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL 0 byte...
Siemens SCALANCE and RUGGEDCOM Missing Authentication for Critical Function (CVE-2025-32433)
Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution RCE. By exploiting a flaw in SSH protocol message handling, a malicious actor...
CVE-2025-40944
A vulnerability has been identified in SIMATIC ET 200AL IM 157-1 PN 6ES7157-1AB00-0AB0 All versions, SIMATIC ET 200MP IM 155-5 PN HF 6ES7155-5AA00-0AC0 All versions = V4.2.0, SIMATIC ET 200SP IM 155-6 MF HF 6ES7155-6MU00-0CN0 All versions, SIMATIC ET 200SP IM 155-6 PN HA incl. SIPLUS variants All...
PT-2026-2354
A vulnerability has been identified in SIMATIC ET 200AL IM 157-1 PN 6ES7157-1AB00-0AB0 All versions, SIMATIC ET 200MP IM 155-5 PN HF 6ES7155-5AA00-0AC0 All versions = V4.2.0, SIMATIC ET 200SP IM 155-6 MF HF 6ES7155-6MU00-0CN0 All versions, SIMATIC ET 200SP IM 155-6 PN HA incl. SIPLUS variants All...
Siemens SCALANCE and RUGGEDCOM Devices Improper Locking (CVE-2024-44952)
driver core: vulnerability due to a potential deadlock due to improper handling of device attributes and driver detachment, which has been fixed by using synchronizercu to prevent race conditions. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50181)
clk: imx: Remove CLKSETPARENTGATE for DRAM mux for i.MX7D. For i.MX7D DRAM related mux clock, the clock source change should ONLY be done done in low level asm code without accessing DRAM, and then calling clk API to sync the HW clock status with clk tree, it should never touch real clock source...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-43883)
usb: vhci-hcd: vulnerability due to the vhci-hcd driver dropping references before new ones were gained, potentially leading to the use of stale pointers. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50267)
USB: serial: ioedgeport: fix use after free in debug printk The devdbg&urb-dev-dev, ... which happens after usbfreeurburb is a use after free of the urb pointer. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46747)
HID: cougar: slab-out-of-bounds Read in cougarreportfixup. Reportfixup for the Cougar 500k Gaming Keyboard was not verifying that the report descriptor size was correct before accessing it. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50099)
arm64: probes: Broken LDR literal uprobe support. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504693; scriptversion"1.3";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56662)
acpi: nfit: vmalloc-out-of-bounds Read in acpinfitctl. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504700; scriptversion"1.3";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53157)
firmware: armscpi: Check the DVFS OPP count returned by the firmware Fix a kernel crash with the below call trace when the SCPI firmware returns OPP count of zero. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56754)
crypto: vulnerability due to passing an incorrect parameter type to devmaddactionorreset in the CAAM driver, which is fixed by ensuring the correct parameter type is used to properly release resources. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-o...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56605)
Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2capsockcreate btsockalloc allocates the sk object and attaches it to the provided sock object. On error l2capsockalloc frees the sk object, but the dangling pointer is still attached to the sock object, which may create use-after-fr...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41070)
KVM: PPC: Book3S HV: UAF in kvmspaprtceattachiommugroup. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504613; scriptversion"1.3";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56634)
gpio: grgpio: vulnerability due to a missing NULL check in grgpioprobe for the return value of devmkasprintf, leading to a kernel NULL pointer dereference error. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SCALANCE and RUGGEDCOM Devices Access of Uninitialized Pointer (CVE-2024-57874)
arm64: ptrace: vulnerability due to an uninitialized variable in the taggedaddrctrlset function, leading to potential memory leakage from the kernel stack when a zero-length SETREGSET call is made, exposing up to 64 bits of memory. This plugin only works with Tenable.ot. Please visit...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46725)
drm/amdgpu: vulnerability caused by an out-of-bounds write warning due to an unchecked ring type value. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...
Siemens SCALANCE and RUGGEDCOM Devices Incorrect Comparison (CVE-2024-9681)
When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...