80 matches found
CVE-2021-27385
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7" & 15" incl. SIPLUS variants All versions V15.1 Update 6, SIMATIC HMI Comfort Outdoor Panels V16 7" & 15" incl. SIPLUS variants All versions V16 Update 4, SIMATIC HMI Comfort Panels V15 4" - 22" incl. SIPLUS...
CVE-2018-4843
A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 414F-3 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 416-3 PN/DP V7 All versions V7.0.3, SIMATIC S7-400 CPU 416F-3 PN/DP V7 All versions V7.0.3, SIMATIC CP 343-1 incl. SIPLUS varian...
CVE-2021-33737
A vulnerability has been identified in SIMATIC CP 343-1 incl. SIPLUS variants All versions, SIMATIC CP 343-1 Advanced incl. SIPLUS variants All versions, SIMATIC CP 343-1 ERPC All versions, SIMATIC CP 343-1 Lean incl. SIPLUS variants All versions, SIMATIC CP 443-1 All versions V3.3, SIMATIC CP...
Siemens SIMATIC Devices Out-of-bounds Write (CVE-2023-42753)
An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the h-nets array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local...
Siemens SIMATIC Devices Divide By Zero (CVE-2024-35925)
block: prevent division by zero in blkrqstatsum This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503787; scriptversion"1.1";...
Siemens SIMATIC Devices Use After Free (CVE-2023-5197)
A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. Addition and removal of rules from chain bindings within the same transaction causes leads to use-after-free. We recommend upgrading past commit...
Siemens SIMATIC Devices Improper Control of a Resource Through its Lifetime (CVE-2024-57901)
afpacket: vlangetprotocoldgram vs MSGPEEK Blamed allowing a crash. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503805; scriptversion"1.1";...
Siemens SIMATIC Devices Improper Input Validation (CVE-2023-4015)
The netfilter subsystem in the Linux kernel did not properly handle bound chain deactivation in certain circumstances. A local attacker could possibly use this to cause a denial of service system crash or execute arbitrary code. This plugin only works with Tenable.ot. Please visit...
Siemens SIMATIC Devices Race Condition (CVE-2024-26923)
In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc';...
Siemens SIMATIC Devices Heap-based Buffer Overflow (CVE-2023-7104)
A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow. It is recommended to apply a...
Siemens SIMATIC Devices Race Condition (CVE-2024-27020)
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fix potential data-race in nftexprtypeget. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
Siemens SIMATIC Devices Use of Uninitialized Resource (CVE-2024-26901)
In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...
Siemens SIMATIC Devices Improper Validation of Specified Quantity in Input (CVE-2024-35962)
netfilter: complete validation of user input This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503407; scriptversion"1.2";...
PT-2025-41883
Name of the Vulnerable Software and Affected Versions SIMATIC CP 1542SP-1 versions prior to 2.4.24 SIMATIC CP 1542SP-1 IRC versions prior to 2.4.24 SIMATIC CP 1543SP-1 versions prior to 2.4.24 SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL versions prior to 2.4.24 SIPLUS ET 200SP CP 1543SP-1 ISEC versio...
EUVD-2019-2643
Malware in sbrugna...
EUVD-2021-14141
Malware in sbrugna...
EUVD-2016-9511
Malware in sbrugna...
EUVD-2021-23760
Malware in sbrugna...
EUVD-2020-7765
Malware in sbrugna...
EUVD-2016-9512
Malware in sbrugna...