Hendrik Schwartke

**Name of the Vulnerable Software and Affected Versions** OMICRON StationGuard versions prior to 2.21 OMICRON StationScout versions prior to 2.21 **Description** The update process can be exploited by providing a modified firmware update image, allowing a remote attacker to gain root access to the system. **Recommendations** For OMICRON StationGuard versions prior to 2.21, update to version 2.21 or later to resolve the issue. For OMICRON StationScout versions prior to 2.21, update to version 2.21 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** OMICRON StationGuard versions 1.10 through 2.20 OMICRON StationScout versions 1.30 through 2.20 **Description** The issue allows an attacker to bypass intended access restrictions due to incorrect authorization. **Recommendations** For OMICRON StationGuard versions 1.10 through 2.20, update to a version that addresses the incorrect authorization issue. For OMICRON StationScout versions 1.30 through 2.20, update to a version that addresses the incorrect authorization issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.5.1 **Description** The issue allows physically proximate attackers to cause a denial of service, resulting in a NULL pointer dereference and system crash, via a crafted USB device without two interrupt-in endpoint descriptors. This is due to a problem in the `mct u232 msr to state` function. **Recommendations** For Linux kernel versions prior to 4.5.1, update to version 4.5.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of crafted USB devices to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.5.1 **Description** The issue allows physically proximate attackers to cause a denial of service, resulting in a NULL pointer dereference and system crash. This is achieved via a crafted `endpoints` value in a USB device descriptor, specifically targeting the `digi port init` function in the Linux kernel. **Recommendations** For Linux kernel versions prior to 4.5.1, update to version 4.5.1 or later to resolve the issue. As a temporary workaround, consider restricting access to USB devices to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.5.1 **Description** The issue is related to the iowarrior probe function in the Linux kernel, which contains an error in handling USB device descriptors. This can be exploited by an attacker to cause a denial of service, resulting in a system crash due to a NULL pointer dereference. The exploitation requires physical proximity to the system and involves crafting a specific value in the USB device descriptor. **Recommendations** For Linux kernel versions prior to 4.5.1, update to version 4.5.1 or later to resolve the issue. As a temporary workaround, consider restricting the use of USB devices to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.5 **Description** The issue allows physically proximate attackers to cause a denial of service, potentially leading to a system crash, by inserting a USB device that lacks specific endpoints. **Recommendations** For Linux kernel versions prior to 4.5, update to version 4.5 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.4.1 **Description** The issue allows physically proximate attackers to cause a denial of service, potentially leading to a system crash, by inserting a USB device that lacks a bulk-out endpoint. This is due to a NULL pointer dereference in the `clie 5 attach` function. **Recommendations** For Linux kernel versions prior to 4.4.1, update to version 4.4.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 4.4 **Description** The issue allows physically proximate attackers to cause a denial of service, resulting in a NULL pointer dereference and system crash, via a crafted USB device that lacks endpoints. This is due to a problem in the aiptek probe function in drivers/input/tablet/aiptek.c. **Recommendations** For Linux kernel versions prior to 4.4, update to version 4.4 or later to resolve the issue. As a temporary workaround, consider restricting the use of USB devices to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Siemens SIMATIC S7-1200 CPU devices with firmware prior to 4.1.3 **Description** A cross-site request forgery (CSRF) issue exists, allowing remote attackers to hijack the authentication of victims via unknown vectors. **Recommendations** For firmware versions prior to 4.1.3, update the firmware to version 4.1.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 3.17 **Description** The issue allows physically proximate attackers to cause a denial of service, resulting in a NULL pointer dereference and system crash. This is achieved via a crafted endpoints value in a USB device descriptor, specifically targeting the wacom probe function in drivers/input/tablet/wacom sys.c. **Recommendations** For Linux kernel versions prior to 3.17, update to version 3.17 or later to resolve the issue.