Review – Public ICS Disclosures – Week of 5-4-24

This week we have 12 vendor disclosures from Aruba Networks, CODESYS, Honeywell, HP, Moxa, SEL (4), Socomec, and Westermo (2). There are also two vendor updates from Broadcom and HP. Eleven researcher reports are available for vulnerabilities in products from Dassault Systèmes (11). Finally, we have six exploits for products from Elber.

Advisories

Aruba Advisory - Aruba published an advisory that discusses the Terrapin-Attack vulnerability.

CODESYS Advisory - CODESYS published an advisory that describes two vulnerabilities in their Development System V2.3 products.

Honeywell Advisory - Honeywell Advisory published an end-of-life notice for their Pro-Watch 5.0 product.

HP Advisory - HP published an advisory that discusses an uncontrolled resource consumption vulnerability in their Teradici PCoIP Management Console.

Moxa Advisory - Moxa published an advisory that describes a cross-site scripting vulnerability in their NPort 5100A series products.

SEL Advisory #1 - SEL published an advisory that announced that the latest version of their Blueframe OS fixed three cybersecurity issues.

SEL Advisory #2 - SEL published an advisory that announced that the most recent SEL-3350-1 BIOS update fixed 10 vulnerabilities (nine of which have available exploits).

SEL Advisory #3 - SEL published an advisory that announced that the latest update for their SEL-3355-2/SEL-3360-2 Intel Management Engine included fixes for two vulnerabilities.

SEL Advisory #4 - SEL published an advisory that announced that the most recent SEL-3355-2/SEL-3360-2 BIOS update fixed 10 vulnerabilities (nine of which have available exploits).

Socomec Advisory - INCIBE-CERT published an advisory that describes two vulnerabilities in the Socomec NET VISION 7, UPS WEB/SNMP Ethernet Card.

Westermo Advisory #1 - Westermo published an advisory that describes four vulnerabilities in their EDW-100 serial to Ethernet converter.

Westermo Advisory #2 - Westermo published an advisory that describes a cleartext transmission of sensitive information vulnerability in their WeOS.

Updates

Broadcom Update - Broadcom published an update for their SANnav exposes Kafka advisory that was originally published on April 25^th, 2024 and most recently updated on April 30^th, 2024.

HP Update - HP published an update for their Plantronics Hub advisory that was originally published on December 20^th, 2023.

Researcher Reports

Dassault Reports - The Zero Day Initiative published eleven reports for individual vulnerabilities in the Dassault Systèmes eDrawings Viewer.

Exploits

Elber Exploits - LiquidWorm published six exploits for vulnerabilities in three products from Elber.

 

For more details about these disclosures, including links to 3rd party advisories, researcher reports, and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-5-89b - subscription required.