3865 matches found
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-35828)
In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: some memleaks in lbsallocatecmdbuffer In the for statement of lbsallocatecmdbuffer, if the allocation of cmdarrayi.cmdbuf fails, both cmdarray and cmdarrayi.cmdbuf needs to be freed. Otherwise, there will be...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Out-of-bounds Read (CVE-2024-49902)
jfs: vulnerability caused by assigning msmgpu-pdev earlier in the initialization process to prevent null pointer dereferences in msmgpucleanup. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-38599)
jffs2: prevent xattr node from overflowing the eraseblock Add a check to make sure that the requested xattr node size is no larger than the eraseblock minus the cleanmarker. Unlike the usual inode nodes, the xattr nodes aren't split into parts and spread across multiple eraseblocks, which means...
Siemens SIMATIC Devices Allocation of Resources Without Limits or Throttling (CVE-2024-26935)
In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix unremoved procfs host directory regression This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SIMATIC Devices Improper Input Validation (CVE-2025-21835)
usb: gadget: fmidi: fix MIDI Streaming descriptor lengths This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503471; scriptversion"1.2";...
Siemens SIMATIC Devices Improper Check for Unusual or Exceptional Conditions (CVE-2024-25739)
createemptylvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero bytes, and crash, because of a missing check for ubi-lebsize. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEV...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Out-of-bounds Write (CVE-2024-50008)
wifi: mwifiex: memcpy field-spanning write warning in mwifiexcmd80211scanext Replace one-element array with a flexible-array member in struct hostcmdds80211scanext. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Access of Uninitialized Pointer (CVE-2024-49938)
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9khtc: Use skbsetlength for resetting urb before resubmit Syzbot points out that skbtrim has a sanity check on the existing length of the skb, which can be uninitialised in some error paths. The intent here is clearly ju...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Resource Shutdown or Release (CVE-2024-40934)
HID: logitech-dj: Fix memory leak in logidjrecvswitchtodjmode Fix a memory leak on logidjrecvsendreport error path. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...
Siemens SIMATIC Devices Out-of-bounds Write (CVE-2025-21865)
gtp: Suppress list corruption splat in gtpnetexitbatchrtnl. Commit eb28fd76c0a0 gtp: Destroy device along with udp socket's netns dismantle. added the foreachnetdev loop in gtpnetexitbatchrtnl to destroy devices in each netns as done in geneve and ip tunnels. However, this could trigger -dellink...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26861)
wireguard: receive: data-race around receivingcounter.counter. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503717; scriptversion"1.2";...
Siemens SIMATIC Devices NULL Pointer Dereference (CVE-2025-21744)
wifi: brcmfmac: fix NULL pointer dereference in brcmftxfinalize This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503684; scriptversion"1.2";...
Siemens SIMATIC Devices Use After Free (CVE-2025-21761)
openvswitch: use RCU protection in ovsvportcmdfillinfo This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503450; scriptversion"1.2";...
Siemens SIMATIC Devices Missing Release of Memory after Effective Lifetime (CVE-2024-58063)
wifi: rtlwifi: fix memory leaks and invalid access at probe error path This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503591; scriptversion"1.2";...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Out-of-bounds Read (CVE-2024-49930)
wifi: ath11k: fix array out-of-bound access in SoC stats. Currently, the ath11ksocdpstats::halreoerror array is defined with a maximum size of DPREODSTRINGMAX. However, the ath11kdpprocessrx function access ath11ksocdpstats::halreoerror using the REO destination SRNG ring ID, which is incorrect...
Siemens SIMATIC Devices Improper Locking (CVE-2025-21859)
USB: gadget: fmidi: fmidicomplete to call queuework This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503474; scriptversion"1.2";...
Siemens SIMATIC Devices Classic Buffer Overflow (CVE-2023-52614)
In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix buffer overflow in transstatshow This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...
Siemens SIMATIC Devices Use After Free (CVE-2024-50150)
In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its parent device, but without keeping a reference to it. When registering the altmode, get a reference to the parent and put it in the...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-40993)
netfilter: ipset: suspicious rcudereferenceprotected. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503718; scriptversion"1.2";...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Use After Free (CVE-2024-44987)
In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent UAF in ip6sendskb. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...