Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40905)

ipv6: possible race in fib6droppcpufrom. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503650; scriptversion"1.3";...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2022-48828)

NFSD: Vulnerability caused by an underflow in iasize due to a mismatch between signed and unsigned 64-bit file size values, which can cause issues when handling large file sizes from NFS clients. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-38578)

ecryptfs: Fix buffer size for tag 66 packet The 'TAG 66 Packet Format' description is missing the cipher code and checksum fields that are packed into the message packet. As a result, the buffer allocated for the packet is 3 bytes too small and writetag66packet will write up to 3 bytes past the e...

Siemens SIMATIC Devices Use After Free (CVE-2025-21753)

btrfs: fix use-after-free when attempting to join an aborted transaction This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503682; scriptversion"1.2...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-38659)

enic: Validate length of nl attributes in enicsetvfport enicsetvfport assumes that the nl attribute IFLAPORTPROFILE is of length PORTPROFILEMAX and that the nl attributes IFLAPORTINSTANCEUUID, IFLAPORTHOSTUUID are of length PORTUUIDMAX. These attributes are validated in the function dosetlink in...

Siemens SIMATIC Devices Time-of-check Time-of-use Race Condition (CVE-2024-26974)

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - resolve race condition during AER recovery This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26659)

xhci: isoc Babble and Buffer Overrun events are not handled properly. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503655; scriptversion"1.2";...

Siemens SIMATIC Devices Out-of-bounds Write (CVE-2024-50151)

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOBs when building SMB2IOCTL request When using encryption, either enforced by the server or when using 'seal' mount option, the client will squash all compound request buffers down for encryption into a single i...

Siemens SIMATIC Devices Improper Input Validation (CVE-2025-21664)

dm thin: make getfirstthin use rcu-safe list first function This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503712; scriptversion"1.2";...

Siemens SIMATIC Devices Classic Buffer Overflow (CVE-2024-50131)

In the Linux kernel, the following vulnerability has been resolved: tracing: Consider the NULL character when validating the event length strlen returns a string length excluding the null byte. If the string length equals to the maximum buffer length, the buffer will have no space for the NULL...

Siemens SIMATIC Devices Missing Release of Memory after Effective Lifetime (CVE-2024-35930)

scsi: lpfc: Fix possible memory leak in lpfcrcvpadisc This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503546; scriptversion"1.2";...

Siemens SIMATIC Devices Race Condition (CVE-2024-26960)

In the Linux kernel, the following vulnerability has been resolved: mm: swap: fix race between freeswapandcache and swapoff This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-58072)

wifi: rtlwifi: remove unused checkbuddypriv This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503728; scriptversion"1.2";...

Siemens SIMATIC Devices Improper Locking (CVE-2024-35997)

HID: i2c-hid: remove I2CHIDREADPENDING flag to prevent lock-up This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503390; scriptversion"1.2";...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-36005)

netfilter: nftables: honor table dormant flag from netdev release event path This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503581;...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Locking (CVE-2024-50044)

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: FIX possible deadlock in rfcommskstatechange rfcommskstatechange attempts to use socklock so it must never be called with it locked but rfcommsockioctl always attempt to lock it. This plugin only works with...

Siemens SIMATIC Devices Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2024-36288)

SUNRPC: Fix loop termination condition in gssfreeintokenpages The intoken-pages array is not NULL terminated. This results in the following KASAN splat: KASAN: maybe wild-memory-access in range 0x04a2013400000008-0x04a201340000000f. This plugin only works with Tenable.ot. Please visit...

Siemens SIMATIC Devices Exposure of Resource to Wrong Sphere (CVE-2024-36959)

In the Linux kernel, the following vulnerability has been resolved: pinctrl: devicetree: fix refcount leak in pinctrldttomap If we fail to allocate propname buffer, we need to drop the reference count we just took. Because the pinctrldtfreemaps includes the droping operation, here we call it...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-27077)

Vulnerability in Linux kernel: media: v4l2-mem2mem: a memleak in v4l2m2mregisterentity The entity-name i.e. name is allocated in v4l2m2mregisterentity but isn't freed in its following error- handling paths. This patch adds such deallocation to prevent memleak of entity-name. This plugin only work...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-57902)

In the Linux kernel, the following vulnerability has been resolved: afpacket: fix vlangettci vs MSGPEEK Blamed commit forgot MSGPEEK case, allowing a crash 1 as found by syzbot. Rework vlangettci to not touch skb at all, so that it can be used from many cpus on the same skb. This plugin only work...