Review – Public ICS Disclosures – Week of 9-2-23

This week we have 22 vendor disclosures from ABB, Aruba Networks, Broadcom, Festo, Hitachi, Hitachi Energy, HP, HPE, ICP DAS, Moxa, Philips, QNAP (4), Synology, and Tanzu (6). There are also three vendor updates from Broadcom, Moxa, and VMware. We also have ten researcher reports for products from Open Automation Software (8), and Panasonic (2). Finally, we have three exploits for products from SolarView, SonicWall, and VMware.

Advisories

ABB Advisory - ABB published an advisory that discusses 15 vulnerabilities in their AC500 V3 products.

Aruba Advisory - Aruba published an advisory that describes three vulnerabilities in their 9200 and 9000 Series Controllers and Gateways.

Broadcom Advisory - Broadcom published an advisory that discusses a stack-based overflow in their Brocade Fabric OS.

Festo Advisory - CERT-VDE published an advisory that describes a hidden functionality vulnerability in the Festo MSE6 product-family.

Hitachi Advisory - Hitachi published an advisory that discusses an improper certificate validation vulnerability in their JP1/VERITAS products.

Hitachi Energy Advisory - Hitachi published an advisory that describes an improper authentication vulnerability in their Asset Suite 9 product.

HP Advisory - HP published an advisory that discusses five vulnerabilities in their PC BIOS.

HPE Advisory - HPE published an advisory that describes three vulnerabilities in their OneView product.

ICP DAS Advisory - Incibe-CERT published an advisory that describes an unrestricted file upload vulnerability in the ICP DAS ET-7060 ethernet module.

Moxa Advisory - Moxa published an advisory that reports that it has enhanced its cryptographic algorithms, including cryptographic key and cipher suites for their NPort 5600 series.

Philips Advisory - Philips published an advisory that discusses a third-party (JuiperOS) improper input validation vulnerability.

QNAP Advisory #1 - QNAP published an advisory that describes a cross-site scripting vulnerability in their QuLog Center.

QNAP Advisory #2 - QNAP published an advisory that describes an OS command injection vulnerability in their QuFirewall.

QNAP Advisory #3 - QNAP published an advisory that describes a cross-site scripting vulnerability in their QuLog Center.

QNAP Advisory #4 - QNAP published an advisory that describes an insertion of sensitive information into a log file vulnerability in their QVR Pro Client.

Synology Advisory - Synology published an advisory describing four vulnerabilities in their Router Manager.

Tanzu Advisory #1 - Tanzu published an advisory that discusses a path traversal vulnerability in their Isolation segment and Tanzu Application Service for VM.

Tanzu Advisory #2 - Tanzu published an advisory that discusses five vulnerabilities in their vulnerability in their Isolation segment and Tanzu Application Service for VM.

Tanzu Advisor #3 - Tanzu published an advisory that discusses an uncontrolled resource consumption vulnerability in their Platform Automation Toolkit, Isolation segment an Tanzu Application Service for VM products.

Tanzu Advisory #4 - Tanzu published an advisory that discusses an improper input validation vulnerability in multiple Tanzu products.

Tanzu Advisory #5 - Tanzu published an advisory that discusses two vulnerabilities in multiple Tanzu products.

Tanzu Advisory #6 - Tanzu published an advisory that discusses an improper certificate validation vulnerability in multiple Tanzu products.

Updates

Broadcom Update - Broadcom published an update for their Brocade Fabric OS advisory that was originally published on August 1^st, 2023.

Moxa Update - Moxa published an update for their TN-5900 and TN-4900 Series Web Server advisory that was originally published on August 16^th, 2023.

VMware Update - VMware published an update for their SAML Token Signature Bypass advisory that was originally published on August 31^st, 2023.

Researcher Report

Open Automation Software Reports - Cisco Talos published eight reports of individual vulnerabilities in the Open Automation Software OAS Platform.

Panasonic Reports - Awesec published two reports of individual vulnerabilities for the Panasonic KW Watcher.

Exploits

SolarView Exploit - h00die-gr3y published a Metasploit module for a command injection vulnerability on the SolarView Compact.

SonicWall Exploit - Ron Bowes published a Metasploit module for four vulnerabilities in the SonicWall GMS product.

VMware Exploit - Harsh Jaiswal, Sina Kheirkhah, and Rahul Maini published an exploit for a use of a broken or risky cryptographic algorithm vulnerability in the VMware Aria Operations for Networks.

 

For more details on these disclosures, including links to 3^rd party advisories, researcher reports and exploits, see my article at - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-9-5de - subscription required.