Review – Public ICS Disclosures – Week of 7-9-22 – Part 1

For a 2nd Tuesday weekend there is just a moderate number of disclosures, but I will still need to do two parts to keep these post sizes reasonable. So, for Part 1 this week we have 22 vendor disclosures from ABB, Bentley (7), Broadcom, Flexera, Hitachi Energy (2), Lenze, HP, QNAP, Rockwell Automation, Sonic Wall, VMware (3), and Western Digital (2).

NOTE: NVD.NIST.gov is now specifically identifying when a CVE is listed in CISA's Known Exploited Vulnerabilities Catalog

ABB Advisory - ABB published an advisory that describes a path traversal vulnerability in ABB flow computer and remote controller products.

Bentley Advisory #1 - Bentley published an advisory that describes an out-of-bounds read vulnerability in their MicroStation and MicroStation-based applications.

Bentley Advisory #2 - Bentley published an advisory that describes an out-of-bounds read vulnerability in their MicroStation and MicroStation-based applications.

Bentley Advisory #3 - Bentley published an advisory that describes an out-of-bounds read vulnerability in their MicroStation and MicroStation-based applications.

Bentley Advisory #4 - Bentley published an advisory that describes an out-of-bounds read vulnerability in their MicroStation and MicroStation-based applications.

Bentley Advisory #5 - Bentley published an advisory that describes an out-of-bounds read vulnerability in their MicroStation and MicroStation-based applications.

Bentley Advisory #6 - Bentley published an advisory that describes an out-of-bounds read vulnerability in their MicroStation and MicroStation-based applications.

Broadcom Advisory - Broadcom published an advisory that describes a deserialization of untrusted data vulnerability in their com.alibaba:fastjson JSON parser package.

Flexera Advisoyr - Flexera published an advisory that discusses two recent Microsoft vulnerabilities (CVE-2022-30190 and CVE-2022-30136).

Hitachi Energy Advisory #1 - Hitachi Energy published an advisory that discusses thirteen vulnerabilities (three with known exploits) in their MSM high-voltage switchgear monitoring system.

Hitachi Energy Advisory #2 - Hitachi Energy published an advisory that describes two vulnerabilities in their MSM high-voltage switchgear monitoring system.

Lenze Advisory - CERT-VDE published an advisory that describes a missing critical step in authentication vulnerability in the Lenze machine controller.

HP Advisory - HP published an advisory that discusses the RETbleed vulnerabilities in their Wolf Security software.

QNAP Advisory - QNAP published an advisory that discusses the Checkmate ransomware that appears to be targeting QNAP products with SMB services exposed to the internet.

Rockwell Advisory - Rockwell published an advisory that discusses a CHROME type confusion vulnerability in multiple products.

SonicWall Advisory - SonicWall published an advisory that discusses an OS command injection vulnerability in their products.

VMware Advisory #1 - VMware published an advisory that describes a server-side request forgery vulnerability in their vCenter Server.

VMware Advisory #2 - VMware published an advisory that describes two cross-site scripting vulnerabilities in their vRealize Log Insight product.

VMware Advisory #3 - VMware published an advisory that describes four vulnerabilities in their ESXi and Cloud Foundation products.

Western Digital Advisory #1 - Western Digital published an advisory that discuses three NULL pointer dereference vulnerabilities in their EdgeRover application.

Western Digital Advisory #2 - Western Digital published an advisory that discusses 44 vulnerabilities in their My Cloud Home devices.

 

For more details on these disclosures, including links to third-party advisories and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-7-9bc  - [7-16-22 10:23 EDT, added link] subscription required.