Today, CISA’s NCCIC-ICS published two control system security advisories for products from Socomec, Phoenix Contact, and Dover Fueling Solutions. They also updated an advisory for products from Delta Electronics. I also take a down-the-rabbit-hole look at changes that CISA has made to the format for their updates.
Advisories
Socomec Advisory -
This advisory
describes seven vulnerabilities in the Socomec MODULYS GP UPS solution.
Phoenix Contact
Advisory - This advisory
describes two vulnerabilities in the Phoenix Contact TC ROUTER and TC CLOUD
CLIENT products.
Dover Fueling Advisory - This advisory describes three vulnerabilities in the Dover Fueling Solutions MAGLINK LX - Web Console Configuration.
Updates
Delta Update - This
update
provides additional information on an advisory that was originally published on
June 6th, 2023.
For more details about these advisories, including links to
researcher reports and exploits, as well as a down-the-rabbit-hole look at
changes in CISA update formats, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/3-advisories-and-1-update-published-367
- subscription required.
Posts
No comments:
Post a Comment