Saturday, October 2, 2021

Review - Public ICS Disclosures – Week of 9-25-21

 This week we have seven vendor disclosures from BD, Dell, Festo, Draeger (2), Philips, and Siemens.

BD Advisory - BD published an advisory discussing three vulnerabilities in their HealthSight, Knowledge, Pyxis, Kiestra, and Alaris products.

Dell Advisory - Dell published an advisory discussing two vulnerabilities in their Wyse ThinOS product.

Festo Advisory - CERT-VDE published an advisory discussing four vulnerabilities in the Festo SBRD-Q, SBOC-Q, and SBOI-Q video system products.

Draeger Advisory #1 - Draeger published an advisory describing a privilege escalation vulnerability in their Protector Software.

Draeger Advisory #2 - Draeger published an advisory discussing the BadAlloc (WindRiver version) vulnerabilities.

Philips Advisory - Philips published an advisory discussing the most recent VMware advisory.

Siemens Advisory - Siemens published an advisory describing ten vulnerabilities in their Solid Edge products.

For more details about these advisories, including links to third-party advisories and exploits, see my article at CFSN Detailed Analysis - - subscription required.


No comments:

/* Use this with templates/template-twocol.html */