In Part 2 we have an additional eleven vendor disclosures from GPSD, Ingeteam, Hitachi ABB Power Grids, HPE (2), QNAP, Tanzu (4), and Yokogawa. We have an updated disclosure for OMRON products. Finally we have two exploits for products from Hikvision and SonicWall,
GPSD Advisory - Incibe CERT published an
advisory discussing the GPS
Daemon Rollover Bug (CISA published a short
advisory on the same topic).
Ingeteam Advisory - Incibe CERT published an advisory describing an exposure of sensitive
information to an unauthorized actor vulnerability in the Ingeteam INGEPAC DA
AU ring main unit.
Hitachi ABB Advisory - Hitachi ABB published an
advisory describing a certificate verification vulnerability in their PCM600
Engineering Tool.
HPE Advisory #1 - HPE published an
advisory describing a directory traversal vulnerability in their iLO
Amplifier Pack.
HPE Advisory #2 - HPE published an
advisory describing a local bypass of security restrictions vulnerability
in their HPE ProLiant products.
QNAP Advisory - QNAP published an advisory
describing a command injection vulnerability in their Media Streaming Add-On.
Tanzu Advisory #1 - Tanzu published an advisory discussing
a shared interface vulnerability in their Spring by VMware products.
Tanzu Advisory #2 - Tanzu published an advisory describing
a security bypass vulnerability in their Spring Data REST products.
Tanzu Advisory #3 - Tanzu published an advisory
describing a deserialization of a maliciously constructed java.util.dictionary
object in their Spring-AMQP product.
Tanzu Advisory #4 - Tanzu published an advisory
describing a log injection vulnerability in their Spring Framework.
Yokogawa Advisory - Yokogawa published an
advisory discussing an unsupported Microsoft XML version vulnerability in many
of their products.
OMRON Update - JP CERT published an update for the
OMRON CS-Supervisor advisory that was originally
published on October 15th, 2021.
Hikvision Exploit - Bashis published an exploit for a command
injection vulnerability in the Hikvision web server.
Sonic Wall Exploit - The Vulnerability Lab published an exploit for a cross-site scripting vulnerability in the Sonicwall SonicOS.
For more details on the advisories, updates and exploits,
including links to 3rd party advisories, see my article at CFSN Detailed
Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-10-a7c
- subscription required.