Siemens SIMATIC Devices Heap-based Buffer Overflow (CVE-2023-7104)

A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow. It is recommended to apply a...

Siemens SIMATIC Devices Uncontrolled Resource Consumption (CVE-2024-35807)

In the Linux kernel, the following vulnerability has been resolved: ext4: fix corruption during on-line resize. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

Siemens SIMATIC Devices Stack-based Buffer Overflow (CVE-2023-4911)

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with SUID permission to execute code...

Siemens SIMATIC Devices Improper Input Validation (CVE-2023-4015)

The netfilter subsystem in the Linux kernel did not properly handle bound chain deactivation in certain circumstances. A local attacker could possibly use this to cause a denial of service system crash or execute arbitrary code. This plugin only works with Tenable.ot. Please visit...

Siemens SIMATIC Devices Use After Free (CVE-2023-3609)

A use-after-free vulnerability in the Linux kernel's net/sched: clsu32 component can be exploited to achieve local privilege escalation. If tcfchangeindev fails, u32setparms will immediately return an error after incrementing or decrementing the reference counter in tcfbindfilter. If an attacker...

Siemens SIMATIC Devices Out-of-bounds Write (CVE-2024-35944)

VMCI: Fix memcpy run-time warning in dgdispatchashost This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503777; scriptversion"1.1";...

Siemens SIMATIC Devices Improper Verification of Cryptographic Signature (CVE-2024-0567)

A vulnerability was found in GnuTLS, where a cockpit which uses gnuTLS rejects a certificate chain with distributed trust. This issue occurs when validating a certificate chain with cockpit-certificate- ensure. This flaw allows an unauthenticated, remote client or attacker to initiate a denial of...

Siemens SIMATIC Devices Out-of-bounds Read (CVE-2023-39194)

A flaw was found in the XFRM subsystem in the Linux kernel. The specific flaw exists within the processing of state filters, which can result in a read past the end of an allocated buffer. This flaw allows a local privileged CAPNETADMIN attacker to trigger an out-of- bounds read, potentially...

Siemens SIMATIC Devices Race Condition (CVE-2024-26923)

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc';...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Resource Locking (CVE-2024-46750)

In the Linux kernel, the following vulnerability has been resolved: PCI: Add missing bridge lock to pcibuslock. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

Siemens SIMATIC Devices Improper Input Validation (CVE-2023-4004)

A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nftpipaporemove function with the element, without a NFTSETEXTKEYEND. This issue could allow a local user to crash the system or potentially escalate their privileges on the system. This plugin only wor...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices NULL Pointer Dereference (CVE-2024-50045)

In the Linux kernel, the following vulnerability has been resolved: netfilter: brnetfilter: fix panic with metadatadst skb. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc...

Siemens SIMATIC Devices Improper Validation of Specified Type of Input (CVE-2024-33621)

In the Linux kernel, the following vulnerability has been resolved: ipvlan: Dont Use skb-sk in ipvlanprocessv4 / 6outbound. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Detection of Error Condition Without Action (CVE-2024-50040)

In the Linux kernel, the following vulnerability has been resolved: igb: Do not bring the device up after non-fatal error. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...

Siemens SIMATIC Devices Use of Uninitialized Resource (CVE-2024-26901)

In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...

Siemens SIMATIC Devices NULL Pointer Dereference (CVE-2023-3338)

A null pointer dereference flaw was found in the Linux kernel's DECnet networking protocol. This issue could allow a remote user to crash the system. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenabl...

Siemens SIMATIC Devices Improper Input Validation (CVE-2023-50495)

NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component ncwrapentry. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Control of Resource Identifiers (CVE-2024-36484)

In the Linux kernel, the following vulnerability has been resolved: net: relax socket state check at accept time. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

Siemens SIMATIC Devices Use of Uninitialized Resource (CVE-2024-26863)

In the Linux kernel, the following vulnerability has been resolved: hsr: Fix uninit-value access in hsrgetnode. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

Siemens SIMATIC Devices Out-of-bounds Read (CVE-2023-42755)

A flaw was found in the IPv4 Resource Reservation Protocol RSVP classifier in the Linux kernel. The xprt pointer may go beyond the linear part of the skb, leading to an out-of-bounds read in the rsvpclassify function. This issue may allow a local user to crash the system and cause a denial of...