Thursday, September 7, 2023

Review – 3 Advisories and 1 Update Published – 9-7-23

Today, CISA’s NCCIC-ICS published two control system security advisories for products from Socomec, Phoenix Contact, and Dover Fueling Solutions. They also updated an advisory for products from Delta Electronics. I also take a down-the-rabbit-hole look at changes that CISA has made to the format for their updates.


Socomec Advisory - This advisory describes seven vulnerabilities in the Socomec MODULYS GP UPS solution.

Phoenix Contact Advisory - This advisory describes two vulnerabilities in the Phoenix Contact TC ROUTER and TC CLOUD CLIENT products.

Dover Fueling Advisory - This advisory describes three vulnerabilities in the Dover Fueling Solutions MAGLINK LX - Web Console Configuration.


Delta Update - This update provides additional information on an advisory that was originally published on June 6th, 2023.


For more details about these advisories, including links to researcher reports and exploits, as well as a down-the-rabbit-hole look at changes in CISA update formats, see my article at CFSN Detailed Analysis - - subscription required.

No comments:

/* Use this with templates/template-twocol.html */