Review – Public ICS Disclosures – Week of 11-4-23 – Part 2

For Part 2 this week we have nine additional vendor advisories from HP, Palo Alto Networks, Pilz, QNAP (2), Supermicro, Weidmüller, Zebra, and Zyxel. There are ten updates for products from Broadcom (7), Cisco (2), and HPE. Finally, we have a researcher report of vulnerabilities in products from Weston.

Advisories

HP Advisory - HP published an advisory that discusses an improper access control vulnerability in multiple HP products.

Palo Alto Networks Advisory - Palo Alto Networks published an advisory that describes an incorrect permissions assignment for critical resource vulnerabilities in their Cortex XSOAR Engine.

Pilz Advisory - Pilz published an advisory that discusses an out-of-bounds write vulnerability in multiple Pilz products.

QNAP Advisory #1 - QNAP published an advisory that describes three vulnerabilities in the their QuMagie product.

QNAP Advisory #2 - QNAP published an advisory that describes an OS command injection vulnerability in their QTS, QuTS hero, or QuTScloud products.

Weidmüller Advisory - CERT-VDE published an advisory that discusses an out-of-bounds write vulnerability in a number of Weidmüller products.

Zebra Advisory - Incibe-CERT advisory published an advisory that describes an authentication bypass using an alternate path or channel vulnerability in the Zebra ZTC ZT410-203dpi ZP printer.

Zyxel Advisory - Zyxel published an advisory that describes an improper privilege management vulnerability in the Zyxel GS1900 series switches.

Updates

Broadcom Update #1 - Broadcom published an update for their Zlib memory corruption advisory that was originally published on August 1^st, 2023 and most recently updated on October 3^rd, 2023.

Broadcom Update #2 - Broadcom published an update for their client side in OpenSSH advisory that was originally published on August 1^st, 2023.

Broadcom Update #3 - Broadcom published an update for their Flaw in glib could leak content advisory that was originally published on August 1^st, 2023.

Broadcom Update #4 - Broadcom published an update for their net ipv6 output_core.c advisory that was originally published on August 1^st, 2023.

Broadcom Update #5 - Broadcom published an update for their net ipv4 route.c advisory that was originally published on August 1^st, 2023.

Broadcom Update #6 - Broadcom published an update for their Security updates provided in Brocade Fabric OS v9.2.0, v9.1.1c, v8.2.3d advisory that was originally published on August 1^st, 2023.

Broadcom Update #7 - Broadcom published an update for their Security updates provided in Brocade SANnav v2.2.2a and v2.3.0 advisory that was originally published on August 29^th, 2023.

Cisco Update #1 - Cisco published an update for their cURL and libcurl Vulnerability advisory that was originally published on October 12^th, 2023, and most recently updated on October 31^st, 2023.

Cisco Update #2 - Cisco published an update for their HTTP/2 Rapid Reset Attack advisory that was originally published on October 10^th, 2023 and most recently updated on November 2^nd, 2023.

HPE Update - HPE published an update for their HPE OneView and HPE OneView Global Dashboard advisory that was originally published on September 28^th, 2023 and most recently updated on October 30^th, 2023.

Researcher Reports

Weston Report - Cisco Talos published a report describing a memory corruption vulnerability in the Weston Embedded uC-HTTP product.

 

For more details about these disclosures, including links to 3rd party advisories, researcher reports, and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-11-78b - subscription required.