Review - Public ICS Disclosures – Week of 5-9-26 – Part 2

 For Part 2 we have six additional vendor disclosures from Dell, Supermicro (3), VMware, and Westermo. There are 24 bulk vendor updates for products from ELECOM (6), Schneider (7), and Siemens (11). Finally, we have two exploits for products from OpenPLC and strongSwan. 

Advisories  

Dell Advisory - Dell published an advisory that discusses three vulnerabilities (all listed in CISA’s KEV catalog) in their ThinOS products. 

Supermicro Advisory #1 - Supermicro published an advisory that discusses a microarchitectural predictor vulnerability in multiple Supermicro products. 

Supermicro Advisory #2 - Supermicro published an advisory that discusses three vulnerabilities in multiple Supermicro products. 

Supermicro Advisory #3 - Supermicro published an advisory that discusses an improper initialization vulnerability in multiple Supermicro products. 

VMware Advisory - Broadcom published an advisory that describes a TOCTOU race condition vulnerability in the VMware Fusion product. 

Westermo Advisory - Westermo published an advisory that discusses an out-of-bounds read vulnerability in their Merlin and Virtual Access GW Series OSPF products. 

Updates  

Bulk Vendor Updates – ELECOM (6) 

Bulk Vendor Updates – Schneider (7) 

Bulk Vendor Updates – Siemens (11) 

Exploits  

OpenPLC Exploit - Unicorn-hyh published an exploit for a path traversal vulnerability in OpenPLC-v3. 

StrongSwan Exploit - Indoushka published a Metasploit module for an integer underflow vulnerability in the strongSwan EAP-TTLS implementation. 

For more information on these disclosures, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-5-6f8 - subscription required. 

Chemical Incident Reporting – Week of 5-9-26

NOTE: See here for series background.

Tucson, AZ – 5-7-26 

Local News Report: Here, here, here, and here. 

There was a traffic accident that resulted in a 100-gal muriatic acid (pool chemical) spill. A shelter-in-place order was put into place for the immediate area, and the road was closed while the spill was cleaned up. No injuries were reported. 

Not CSB reportable, transportation related event. 

Hopewell, VA – 5-9-26  

Local News Report: Here and here. 

There were neighborhood complaints of an ammonia odor from a chemical plant. A shelter-in-place order was issued. A brief vapor release was confirmed at the facility. 

Not CSB reportable. 

Tulsa, OK – 5-11-26  

Local News Report: Here, here, and here. 

There was a large fire at an oil refinery. One worker was transported to local hospitals for smoke inhalation issues. Several vehicles were destroyed on site.  

Possible CSB reportable. 

Cleveland, TN – 5-14-26  

Local News Report: Here, here, here, and here. 

There was a lithium-ion battery explosion at a metals manufacturing facility that resulted in powdered titanium alloy exposure concerns. Two people were transported to local hospitals for burns from the explosion. 

Possible CSB reportable. 

Interesting point here. Lithium battery fires emit dangerous chemicals so such fires could count as a CSB reportable (40 CFR Part 1604) incident if the other requirements (fixed site, severe injuries, deaths, or damages) are met. For this incident, the titanium powder issue is just an added chemical hazard. 

Review – Bills Introduced – 5-15-26

Yesterday, with just the House in Washington, there were 35 bills introduced. One of those bills will receive additional coverage in this blog: 

HR 8845 Commerce, Justice, Science, and Related Agencies Appropriations Act, 2027. Rogers, Harold [Rep.-R-KY-5] 

Space Geek Legislation  

I would like to mention one bill under my limited Space Geek coverage in this blog: 

HR 8851 To amend title 51, United States Code, to direct the Secretary of Transportation to establish an electronic processing portal for licenses and other approvals related to commercial space launch activities, and for other purposes. Haridopolos, Mike [Rep.-R-FL-8] 

For more information on these bills, including legislative history for similar bills in the 118th Congress, as well as a mention in passing of a bill that would expand the definition of domestic terrorism, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/bills-introduced-5-15-26 - subscription required.