Review – 16 Advisories and 1 Update Published – 12-14-23

Today, CISA’s NCCIC-ICS published 16 control system security advisories for products from Unitronics, Johnson Controls, Cambium and Siemens (13). They also published a medical device security advisory update for products from Philips.

Siemens also published 15 advisory updates that CISA is no longer covering. I will look at those this weekend in my Public ICS Disclosure post.

Advisories

Unitronics Advisory - This advisory describes an initialization of a resource with insecure default vulnerability in the Unitronics Vision Series PLCs and HMIs.

Johnson Controls Advisory - This advisory describes a missing release of information after effective lifetime vulnerability in the Johnson Controls Kantech Gen1 ioSmart card reader.

Cambium Advisory - This advisory describes a code injection vulnerability in the Cambium ePMP Force 300-25 radio.

SINEC Advisory - This advisory discusses seven vulnerabilities in the Siemens SINEC INS product.

RUGGEDCOM Advisory - This advisory describes nine vulnerabilities in the Siemens RUGGEDCOM RM1224 LTE and SCALANCE M-800/S615 families of routers.

SCALANCE Advisory - This advisory describes two vulnerabilities in the Siemens RUGGEDCOM RM1224 LTE and SCALANCE M-800/S615 families of routers.

SICAM Advisory - This advisory describes two vulnerabilities in the Siemens Power Meter SICAM Q100 products.

SINUMERIK Advisory - This advisory describes a use after free vulnerability in the Siemens SINUMERIK MC and SINUMERIK ONE products.

SIMATIC Advisory #1 - This advisory discusses 404 vulnerabilities in the Siemens SIMATIC and SIPLUS S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1 products.

SIMATIC Advisory #2 - This advisory describes a use after free vulnerability in the Siemens SIMATIC and SIPLUS S7-1500 CPU family.

SIMATIC Advisory #3 - This advisory describes a clear-text storage of sensitive information vulnerability in the Siemens SIMATIC STEP 7 (TIA Portal).

SIMATIC Advisory #4 - This advisory describes two vulnerabilities in the Siemens SIMATIC and SIPLUS products.

Industrial Products Advisory - This advisory describes a missing release of memory after effective lifetime vulnerability in the Siemens SIMATIC CP, SINAMICS, and SIPLUS NET CP products.

OPC UA Implementation Advisory - This advisory describes an integer overflow or wrap around vulnerability in the Siemens SINUMERIK MC and SINUMERIK ONE products.

LOGO! Advisory - This advisory describes an improper protection against electromagnetic fault injection vulnerability in the Siemens LOGO! and SIPLUS LOGO! Products.

User Management Component Advisory - This advisory describes five vulnerabilities in the Siemens User Management Component (UMC).

Updates

Philips Update - This update provides additional information on the Philips Patient Monitoring Devices advisory that was originally published on September 10^th, 2020 and most recently updated on November 8^th, 2021.

 

For more details about these advisories, including links to third-party advisories and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/16-advisories-and-1-update-published - subscription required.