Review – Public ICS Disclosures – Week of 9-30-23

This week we have 22 vendor disclosures from Broadcom (3), Cisco, Eaton, Hitachi (6), HP (2), Honeywell, Moxa, Palo Alto Networks, QNAP (3), Sick (2), and Wireshark. There are five vendor updates from Broadcom, CODESYS, HPE (2), and Palo Alto Networks. Finally, we have a researcher report for products from Zavio.

Advisories

Broadcom Advisory #1 - Broadcom published an advisory that discusses a heap-based buffer overflow vulnerability in their Brocade OS.

Broadcom Advisory #2 - Broadcom published an advisory that discusses an observable discrepancy vulnerability in their Brocade Extension Switches.

Broadcom Advisory #3 - Broadcom published an advisory that discusses six vulnerabilities in their Brocade Extension Switches.

Cisco Advisory - Cisco published an advisory that describes a use of hard-coded credentials vulnerability in their Emergency Responder.

Eaton Advisory - Eaton published an advisory that describes a group access authorization logic vulnerability in the SecureConnect product.

Hitachi Advisory #1 - Hitachi published an advisory that discusses two vulnerabilities in their Ops Center Administrator product.

Hitachi Advisory #2 - Hitachi published an advisory that describes an allocation of resources without limits or throttling vulnerability in their Ops Center Common Services product.

Hitachi Advisory #3 - Hitachi published an advisory that discusses eight vulnerabilities in their Ops Center Common Services product.

Hitachi Advisory #4 - Hitachi published an advisory that discusses 19 vulnerabilities in multiple Hitachi products.

Hitachi Advisory #5 - Hitachi published an advisory that describes an incorrect default permissions vulnerability in their JP1/Performance Management products.

Hitachi Advisory #6 - Hitachi published an advisory that describes an insertion of sensitive information into a log file vulnerability in their Ops Center Administrator product.

HP Advisory #1 - HP published an advisory that discusses four vulnerabilities in their Enterprise LaserJet, LaserJet Managed printers.

HP Advisory #2 - HP published an advisory that describes a privilege escalation vulnerability in their LIFE Android Mobile application.

Honeywell Advisory - Honeywell published a software release bulletin for their EBI Mercury Interface R190 Software that notes that some undisclosed “vulnerability fixed, to increase the security of the device”.

Moxa Advisory - Moxa published an advisory that describes an improper validation of integrity check value vulnerability in their NPort 5000 Series products.

Palo Alto Networks Advisory - Palo Alto Networks published an advisory that discusses a heap-based buffer overflow vulnerability in their Brocade OS.

QNAP Advisory #1 - QNAP published an advisory that describes a cleartext transmission of sensitive information vulnerability in their QVPN Device Client for Windows.

QNAP Advisory #2 - QNAP published an advisory that describes an insufficiently protected credentials vulnerability in their QVPN Device Client for Windows.

QNAP Advisory #3 - QNAP published an advisory that describes two classic buffer overflow vulnerabilities in their QTS, QuTS hero, and QuTScloud products.

Sick Advisory #1 - Sick published an advisory that discusses a heap-based buffer overflow vulnerability in multiple Sick products.

Sick Advisory #2 - Sick published an advisory that describes an improper access control vulnerability in their SIM1012 product.

Wireshark Advisory - Wireshark published an advisory that describes a memory allocation with excessive size value vulnerability in their RTPS dissector.

Updates

Broadcom Update - Broadcom published an update for their Zlib memory corruption advisory that was originally published on August 1^st, 2023.

CODESYS Update - CODESYS published an update for their WIBU CodeMeter Runtime advisory that was originally published on August 17^th, 2023.

HPE Update #1 - HPE published an update for their ProLiant BL/DL/ML Servers that was originally published on February 14^th, 2023 and most recently updated March 23, 2023.

HPE Update #2 - HPE published an update for their ProLiant BL/DL/ML Servers that was originally published on November 8^th, 2022 and most recently updated on March 15^th, 2023.

Palo Alto Networks Update - Palo Alto Networks published an update for their BGP Software advisory that was originally published on September 13^th, 2023 and most recently updated on September 28^th, 2023.

Researcher Reports

Zavio Report - BugProve published a report describing 34 vulnerabilities in a variety of IP cameras from the now out-of-business Zavio.

 

For more information on these disclosures, including links to 3^rd party vendors, researcher reports, and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-9-bad - subscription required.