Sign-up

ID

VAR-202405-3068


CVE

CVE-2024-35960


TITLE

Linux  of  Linux Kernel  etc. in products from multiple vendors.  NULL  Pointer dereference vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2024-021575

DESCRIPTION

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Properly link new fs rules into the tree Previously, add_rule_fg would only add newly created rules from the handle into the tree when they had a refcount of 1. On the other hand, create_flow_handle tries hard to find and reference already existing identical rules instead of creating new ones. These two behaviors can result in a situation where create_flow_handle 1) creates a new rule and references it, then 2) in a subsequent step during the same handle creation references it again, resulting in a rule with a refcount of 2 that is not linked into the tree, will have a NULL parent and root and will result in a crash when the flow group is deleted because del_sw_hw_rule, invoked on rule deletion, assumes node->parent is != NULL. This happened in the wild, due to another bug related to incorrect handling of duplicate pkt_reformat ids, which lead to the code in create_flow_handle incorrectly referencing a just-added rule in the same flow handle, resulting in the problem described above. Full details are at [1]. This patch changes add_rule_fg to add new rules without parents into the tree, properly initializing them and avoiding the crash. This makes it more consistent with how rules are added to an FTE in create_flow_handle. Linux of Linux Kernel Products from multiple vendors such as NULL There is a vulnerability in pointer dereference.Information is tampered with and service operation is interrupted (DoS) It may be in a state. The RUGGEDCOM RST2428P is a Layer 2 Ethernet switch based on the SINEC operating system with up to 28 non-blocking interfaces. SCALANCE X switches are used to connect industrial components such as programmable logic controllers (PLCs) or human-machine interfaces (HMIs). Multiple vulnerabilities in third-party components of Siemens' SINEC OS could allow attackers to gain control of the server

Trust: 2.16

sources: NVD: CVE-2024-35960 // JVNDB: JVNDB-2024-021575 // CNVD: CNVD-2025-19346

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2025-19346

AFFECTED PRODUCTS

vendor:linuxmodel:kernelscope:eqversion:6.9

Trust: 1.8

vendor:linuxmodel:kernelscope:gteversion:5.11

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:4.20

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:5.5

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:4.19.313

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:6.2

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:6.8.7

Trust: 1.0

vendor:debianmodel:linuxscope:eqversion:10.0

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:4.10

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:5.16

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:5.10.216

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:5.4.275

Trust: 1.0

vendor:linuxmodel:kernelscope:gteversion:6.7

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:6.1.87

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:5.15.156

Trust: 1.0

vendor:linuxmodel:kernelscope:ltversion:6.6.28

Trust: 1.0

vendor:debianmodel:gnu/linuxscope: - version: -

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:5.11 that's all 5.15.156

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:6.2 that's all 6.6.28

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:5.16 that's all 6.1.87

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:6.7 that's all 6.8.7

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:5.5 that's all 5.10.216

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:4.20 that's all 5.4.275

Trust: 0.8

vendor:linuxmodel:kernelscope:eqversion:4.10 that's all 4.19.313

Trust: 0.8

vendor:siemensmodel:ruggedcom rst2428pscope:ltversion:v3.1

Trust: 0.6

vendor:siemensmodel:scalance xc-300/xr-300/xc-400/xr-500wg/xr-500 familyscope:ltversion:v3.1

Trust: 0.6

vendor:siemensmodel:scalance xcm-/xrm-/xch-/xrh-300 familyscope:ltversion:v3.1

Trust: 0.6

sources: CNVD: CNVD-2025-19346 // JVNDB: JVNDB-2024-021575 // NVD: CVE-2024-35960

CVSS

SEVERITY

CVSSV2

CVSSV3

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2024-35960
value: CRITICAL

Trust: 1.0

OTHER: JVNDB-2024-021575
value: CRITICAL

Trust: 0.8

CNVD: CNVD-2025-19346
value: HIGH

Trust: 0.6

CNVD: CNVD-2025-19346
severity: HIGH
baseScore: 7.2
vectorString: AV:L/AC:L/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

134c704f-9b21-4f2e-91b3-4a467353bcc0: CVE-2024-35960
baseSeverity: CRITICAL
baseScore: 9.1
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.2
version: 3.1

Trust: 1.0

OTHER: JVNDB-2024-021575
baseSeverity: CRITICAL
baseScore: 9.1
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2025-19346 // JVNDB: JVNDB-2024-021575 // NVD: CVE-2024-35960

PROBLEMTYPE DATA

problemtype:CWE-476

Trust: 1.0

problemtype:NULL Pointer dereference (CWE-476) [ others ]

Trust: 0.8

sources: JVNDB: JVNDB-2024-021575 // NVD: CVE-2024-35960

PATCH

title:Linux Kernel Archivesurl:https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

Trust: 0.8

title:Patch for Multiple vulnerabilities in Siemens SINEC OS third-party componentsurl:https://www.cnvd.org.cn/patchInfo/show/723071

Trust: 0.6

sources: CNVD: CNVD-2025-19346 // JVNDB: JVNDB-2024-021575

EXTERNAL IDS

db:NVDid:CVE-2024-35960

Trust: 2.6

db:SIEMENSid:SSA-613116

Trust: 1.6

db:SIEMENSid:SSA-265688

Trust: 1.0

db:JVNDBid:JVNDB-2024-021575

Trust: 0.8

db:CNVDid:CNVD-2025-19346

Trust: 0.6

sources: CNVD: CNVD-2025-19346 // JVNDB: JVNDB-2024-021575 // NVD: CVE-2024-35960

REFERENCES

url:https://cert-portal.siemens.com/productcert/html/ssa-613116.html

Trust: 1.6

url:https://git.kernel.org/stable/c/7aaee12b804c5e0374e7b132b6ec2158ff33dd64

Trust: 1.0

url:https://lists.debian.org/debian-lts-announce/2024/06/msg00017.html

Trust: 1.0

url:https://git.kernel.org/stable/c/1263b0b26077b1183c3c45a0a2479573a351d423

Trust: 1.0

url:https://lists.debian.org/debian-lts-announce/2024/06/msg00020.html

Trust: 1.0

url:https://git.kernel.org/stable/c/7c6782ad4911cbee874e85630226ed389ff2e453

Trust: 1.0

url:https://git.kernel.org/stable/c/adf67a03af39095f05d82050f15813d6f700159d

Trust: 1.0

url:https://git.kernel.org/stable/c/2e8dc5cffc844dacfa79f056dea88002312f253f

Trust: 1.0

url:https://cert-portal.siemens.com/productcert/html/ssa-265688.html

Trust: 1.0

url:https://git.kernel.org/stable/c/3d90ca9145f6b97b38d0c2b6b30f6ca6af9c1801

Trust: 1.0

url:https://git.kernel.org/stable/c/5cf5337ef701830f173b4eec00a4f984adeb57a0

Trust: 1.0

url:https://git.kernel.org/stable/c/de0139719cdda82806a47580ca0df06fc85e0bd2

Trust: 1.0

url:https://nvd.nist.gov/vuln/detail/cve-2024-35960

Trust: 0.8

sources: CNVD: CNVD-2025-19346 // JVNDB: JVNDB-2024-021575 // NVD: CVE-2024-35960

SOURCES

db:CNVDid:CNVD-2025-19346
db:JVNDBid:JVNDB-2024-021575
db:NVDid:CVE-2024-35960

LAST UPDATE DATE

2026-06-19T21:39:02.732000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2025-19346date:2025-08-22T00:00:00
db:JVNDBid:JVNDB-2024-021575date:2025-04-08T04:44:00
db:NVDid:CVE-2024-35960date:2026-05-12T12:16:43.590

SOURCES RELEASE DATE

db:CNVDid:CNVD-2025-19346date:2025-08-12T00:00:00
db:JVNDBid:JVNDB-2024-021575date:2025-04-08T00:00:00
db:NVDid:CVE-2024-35960date:2024-05-20T10:15:11.190