Review – Public ICS Disclosures – Week of 5-20-23

This week we have 62 vendor disclosures for products from ABB, Aruba Networks, Bosch (3), Eaton, HPE (2), Meinberg, Tanzu (42), VMware, Western Digital, and Wireshark (9). There are two researcher reports for products from Broadcom and Mitsubishi. Finally, we have two exploits for products from TEM and PnPSCADA.

Advisories

ABB Advisory - ABB published an advisory that describes an insertion of sensitive information into log files vulnerability in their QCS and Platform Engineering Tools products.

Aruba Advisory - Aruba published an advisory that describes ten vulnerabilities in their EdgeConnect Enterprise product.

Bosch Advisory #1 - Bosch published an advisory that describes an exposure of sensitive information to an unauthorized actor vulnerability in their Video Management System (BVMS).

Bosch Advisory #2 - Bosch published an advisory that describes a misinterpretation of input vulnerability in their AMC2-4WCF and AMC2-2WCF access control products.

Bosch Advisory #3 - Bosch published an advisory that discusses a remote code execution vulnerability in their Bosch Video Management System (BVMS), the Bosch Access Management System (AMS), and the Bosch Building Integration System (BIS) products.

Eaton Advisory - Eaton published an advisory that discusses 16 vulnerabilities in multiple products.

HPE Advisory #1 - HPE published an advisory that discusses two vulnerabilities in their SimpliVity Servers.

HPE Advisory #2 - HPE published an advisory that discusses a double free vulnerability in their IceWall products.

Meinberg Advisory - Meinberg published an advisory that discusses 16 vulnerabilities in their Lantime product.

TANZU Advisories - Tanzu published 42 advisories, each discussing individual third-party vulnerabilities in various Tanzu products.

VMware Advisory - VMware has published an advisory that describes a cross-site scripting vulnerability in their NSX-T product.

Western Digital Advisory - Western Digital has published an advisory that describes a server-side request forgery vulnerability in their My Cloud Home, My Cloud Home Duo and SanDisk ibi firmware.

Wireshark Advisories - Wireshark published 9 advisories, each describing individual vulnerabilities in various components of their product.

Reports

Broadcom Report - BugProve published a report that describes an out-of-bounds write vulnerability in the Broadcom BCM47xx SDK.

Mitsubishi Report - Talos Intelligence has published a report describing a memory corruption vulnerability in the Mitsubishi MELSEC iQ-F FX5U.

Exploits

TEM Exploit - Mr. Empy published an exploit for an improper resource shutdown or release vulnerability in the TEM FLEX-1085 alarm central.

PnPSCADA Exploit - Momen Eldawakhly published an exploit for an SQL injection vulnerability in the SDG PnPSCADA product.

 

For more details about these disclosures, including links to 3^rd party advisories, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-5-58b - subscription required.