3865 matches found
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Allocation of Resources Without Limits or Throttling (CVE-2024-42082)
xdp: unused WARN in xdpregmemmodel. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503577; scriptversion"1.3";...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-58009)
Bluetooth: L2CAP: handle NULL sock pointer in l2capsockalloc This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503503; scriptversion"1.2";...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Resource Shutdown or Release (CVE-2024-41006)
netrom: a memory leak in nrheartbeatexpiry. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503530; scriptversion"1.3";...
Siemens SIMATIC Devices Improper Locking (CVE-2024-58071)
team: prevent adding a device which is already a team device lower This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503513; scriptversion"1.2";...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Out-of-bounds Read (CVE-2024-40941)
wifi: iwlwifi: mvm: don't read past the mfuart notifcation. In case the firmware sends a notification that claims it has more data than it has, it will read past that was allocated for the notification. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-36007)
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrumacltcam: Fix warning during rehash As previously explained, the rehash delayed work migrates filters from one region to another. This is done by iterating over all chunks all the filters with the same priority in t...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26894)
ACPI: processoridle: Fix memory leak in acpiprocessorpowerexit. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503562; scriptversion"1.2";...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26859)
net/bnx2x: Race condition leading to system crash during EEH error handling. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503545;...
Siemens SIMATIC Devices Use After Free (CVE-2025-21763)
neighbour: use RCU protection in neighnotify This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503482; scriptversion"1.2";...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-38560)
scsi: bfa: Ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel buffer and copy nbytes from userspace to that buffer. Later, we use sscanf on this buffer but we don't ensure that the string is terminated inside the buffer, this can lead to OOB read when using sscan...
Siemens SIMATIC Devices Integer Overflow or Wraparound (CVE-2024-58017)
printk: Fix signed integer overflow when defining LOGBUFLENMAX This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503397; scriptversion"1.2";...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-58051)
ipmi: ipmb: Add check devmkasprintf returned value This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503604; scriptversion"1.2";...
Siemens SIMATIC Devices Use After Free (CVE-2024-56631)
In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Fix slab-use-after-free read in sgrelease Fix a use- after-free bug in sgrelease, detected by syzbot with KASAN: The fix has been tested and validated by syzbot. This patch closes the bug reported at the following...
Siemens SIMATIC Devices Missing Initialization of a Variable (CVE-2024-45018)
In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: initialise extack before use Fix missing initialisation of extack in flow offload. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26884)
bpf: Fix hashtab overflow check on 32-bit arches. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503610; scriptversion"1.2";...
Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26851)
netfilter: nfconntrackh323: Add protection for bmp length out of range. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503630; scriptversion"1.2"...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Control of a Resource Through its Lifetime (CVE-2024-47713)
wifi: mac80211: vulnerability caused by implementing a two-phase skb reclamation in ieee80211dostop to avoid warnings and potential issues caused by calling devqueuexmit with interrupts disabled. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...
Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-36974)
net/sched: taprio: always validate TCATAPRIOATTRPRIOMAP. If one TCATAPRIOATTRPRIOMAP attribute has been provided, taprioparsemqprioopt must validate it, or userspace can inject arbitrary data to the kernel, the second time tapriochange is called. First call with valid attributes sets dev-numtc to...
Siemens SIMATIC Devices Improper Locking (CVE-2024-35990)
dma: xilinxdpdma: Fix locking This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503700; scriptversion"1.2";...
Siemens SIMATIC Devices Improper Locking (CVE-2024-57977)
memcg: A soft lockup vulnerability in the product with about 56,000 tasks were in the OOM cgroup, it was traversing them when the soft lockup was triggered. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...