Siemens SIMATIC Devices Improper Input Validation (CVE-2024-38615)

cpufreq: exit callback is optional The exit callback is optional and shouldn't be called without checking a valid pointer first. Also, we must clear freqtable pointer even if the exit callback isn't present. This plugin only works with Tenable.ot. Please visit...

Siemens SIMATIC Devices NULL Pointer Dereference (CVE-2024-35940)

pstore/zone: Add a null pointer check to the pszkmsgread This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503561; scriptversion"1.2";...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Expired Pointer Dereference (CVE-2024-47709)

can: bcm: A warning is triggered when connect is issued again for a socket whose connected device has been unregistered. However, if the socket is just closed without the 2nd connect, the remaining bo-bcmprocread triggers unnecessary removeprocentry in bcmrelease. This plugin only works with...

Siemens SIMATIC Devices NULL Pointer Dereference (CVE-2024-22099)

NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM net, bluetooth modules allows Overflow Buffers. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C. This issue affects Linux kernel: v2.6.12-rc2. This plugin only works with...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Race Condition (CVE-2024-36894)

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Fix race between aiocancel and AIO request complete This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

Siemens SIMATIC Devices Use After Free (CVE-2025-21764)

ndisc: use RCU protection in ndiscallocskb This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503652; scriptversion"1.2";...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26903)

Bluetooth: rfcomm: Fixed null-ptr-deref in rfcommchecksecurity. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503694; scriptversion"1.2";...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices NULL Pointer Dereference (CVE-2024-50046)

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Prevent NULL-pointer dereference in nfs42completecopies On the node of an NFS client, some files saved in the mountpoint of the NFS server were copied to another location of the same NFS server. Accidentally, the...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Use After Free (CVE-2024-47718)

wifi: rtw88: vulnerability may lead to a use-after-free UAF error if firmware loading is not properly synchronized during USB initialization and disconnection. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 8090...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40978)

scsi: qedi: crash while reading debugfs attribute. The qedidbgdonotrecovercmdread function invokes sprintf directly on a user pointer, which results into the crash. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

Siemens SIMATIC Devices Incomplete Cleanup (CVE-2024-50148)

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bnep: fix wild-memory-access in protounregister As bnepinit ignore bnepsockinit's return value, and bnepsockinit will cleanup all resource. Then when remove bnep module will call bnepsockcleanup to cleanup sock's...

Siemens SIMATIC Devices Improper Input Validation (CVE-2025-21719)

ipmr: do not call mrmfcusesdev for unres entries This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503487; scriptversion"1.2";...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26891)

iommu/vt-d: Don't issue ATS Invalidation request when device is disconnected. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503550;...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-27053)

Vulnerability in the Linux kernel: wifi: wilc1000: RCU usage in connect path This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503627;...

Siemens SIMATIC Devices Use After Free (CVE-2024-26951)

In the Linux kernel, the following vulnerability has been resolved: wireguard: netlink: check for dangling peer via isdead instead of empty list This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, In...

Siemens SIMATIC Devices Improper Input Validation (CVE-2024-26870)

NFSv4.2: fix nfs4listxattr kernel BUG at mm/usercopy.c:102. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503505; scriptversion"1.2";...

Siemens SIMATIC Devices Use After Free (CVE-2024-26958)

In the Linux kernel, the following vulnerability has been resolved: nfs: fix UAF in direct writes This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

Siemens SIMATIC Devices Out-of-bounds Read (CVE-2024-35896)

In the Linux kernel, the following vulnerability has been resolved: netfilter: validate user input for expected length I got multiple syzbot reports showing old bugs exposed by BPF after commit 20f2505fb436 bpf: Try to avoid kzalloc in cgroup/s,getsockopt setsockopt @optlen argument should be tak...

Siemens SIMATIC Devices Use After Free (CVE-2024-56672)

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix UAF in blkcgunpinonline blkcgunpinonline walks up the blkcg hierarchy putting the online pin. To walk up, it uses blkcgparentblkcg but it was calling that after blkcgdestroyblkgsblkcg which could free the blkcg Th...

Siemens SIMATIC Devices Use After Free (CVE-2024-27397)

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: use timestamp to check for set element timeout Add a timestamp field at the beginning of the transaction, store it in the nftables per-netns area. Update set backend .insert, .deactivate and sync gc path to u...