Barco ClickShare Devices Improper Certificate Validation (CVE-2019-18826)

Barco ClickShare Button R9861500D01 devices before 1.9.0 have Improper Following of a Certificate's Chain of Trust. The embedded 'donglebridge' program used to expose the functionalities of the ClickShare Button to a USB host, does not properly validate the whole certificate chain. This plugin on...

Device Presence Anomaly Detected (Low)

It is important to know what assets exist in your network. New assets can indicate unexpected network connections, third-party connectivity, or potential threats to the network. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

Firmware Version Change Detected (Low)

Changes in the controller firmware represent a major change in the behavior of the device and usually cause a temporary interruption of operations. An attacker could use firmware changes to add malicious code to the controller, causing it to perform harmful operations which are hard to detect. Th...

Siemens SIMATIC Devices Linux Kernel Out-of-bounds Read (CVE-2022-2905)

An out-of-bounds memory read flaw was found in the Linux kernel's BPF subsystem in how a user calls the bpftailcall function with a key larger than the maxentries of the map. This flaw allows a local user to gain unauthorized access to data. This plugin only works with Tenable.ot. Please visit...

CVE-2023-24494

A stored cross-site scripting XSS vulnerability exists in Tenable.sc due to improper validation of user-supplied input before returning it to users. An authenticated, remote attacker can exploit this by convincing a user to click a specially crafted URL, to execute arbitrary script code in a user...