Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40947)

ima: Avoid blocking in RCU read-side critical section, a panic happens in imamatchpolicy. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504587;...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-42095)

serial: 8250omap: Erroneous timeout can be triggered, and it may lead to storm of interrupts. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53157)

firmware: armscpi: Check the DVFS OPP count returned by the firmware Fix a kernel crash with the below call trace when the SCPI firmware returns OPP count of zero. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46723)

drm/amdgpu: vulnerability due to an out-of-bounds read warning when accessing ucode. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504680;...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49901)

drm/msm/adreno: vulnerability caused by assigning msmgpu-pdev earlier in the initialization process to prevent null pointer dereferences in msmgpucleanup. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49895)

drm/amd/display: vulnerability caused by adding a check to ensure the index 'i' is within bounds before accessing transfer function points in cmhelpertranslatecurvetodegammahwformat, preventing buffer overflow errors. This plugin only works with Tenable.ot. Please visit...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50179)

ceph: incorrect Fw reference check when dirtying pages. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504801; scriptversion"1.3";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49867)

btrfs: wait for fixup workers before stopping cleaner kthread during umount During unmount, at closectree. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53060)

drm/amdgpu: vulnerability due to a potential NULL pointer dereference in drm/amdgpu if acpievaluateobject returns AENOTFOUND, which is mitigated by bailing out when this status is encountered. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for mor...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41034)

nilfs2: kernel bug on rename operation of broken directory. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504476; scriptversion"1.2";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2023-52917)

ntb: intel: Fix the NULL vs ISERR bug for debugfscreatedir. The debugfscreatedir function returns error pointers. It never returns NULL. So use ISERR to check it. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50051)

spi: mpc52xx: Add cancelworksync before module remove. If the module which will call mpc52xxspiremove is removed, it will free 'ms' through spiunregistercontroller. while the work ms-work will be used. The sequence of operations that may lead to a UAF bug. This plugin only works with Tenable.ot...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53066)

nfs: KMSAN warning in decodegetfattrattrs. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504687; scriptversion"1.3";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49882)

ext4: In ext4exttrytomergeup, path1.pbh should be set to NULL after it has been released, otherwise it may be released twice. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53227)

scsi: bfa: use-after-free in bfadimmoduleexit. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504501; scriptversion"1.2";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40929)

wifi: iwlwifi: mvm: check nssids before accessing the ssids.In some versions of cfg80211, the ssids poinet might be a valid one even though nssids is 0. Accessing the pointer in this case will cuase an out-of-bound access. This plugin only works with Tenable.ot. Please visit...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53239)

ALSA: 6fire: The current 6fire code tries to release the resources right after the call of usb6firechipabort. But at this moment, the card object might be still in use as we're calling sndcardfreewhenclosed and cause potential UAFs. This plugin only works with Tenable.ot. Please visit...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46689)

soc: qcom: cmd-db: Map shared memory as WC, not WB Linux does not write into cmd-db region. This region of memory is write protected by XPU. XPU may sometime falsely detect clean cache eviction as write into the write protected region leading to secure interrupt which causes an endless loop...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49957)

ocfs2: null-ptr-deref when journal load failed. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504593; scriptversion"1.2";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40987)

drm/amdgpu: UBSAN warning in kvdpm.c. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504482; scriptversion"1.2";...