Review – Public ICS Disclosures – Week of 5-11-24 – Part 1

This week we have 28 vendor disclosures from ABB, Aruba, Belden, Bosch, B&R, Dell, Dassault Systèmes, Field Logic, FortiGuard (5), GE Healthcare (2), Hitachi, HP (8), HPE (2), Insyde, and Palo Alto Networks.

Advisories

ABB Advisory - ABB published an advisory that describes two vulnerabilities in their IRC5 / OmniCore RobotWare products.

Aruba Advisory - Aruba published an advisory that describes 18 vulnerabilities in their Access Points product.

Belden Advisory - Belden published an advisory that discusses three vulnerabilities (two with known exploits) in their BAT-C2 and OWL products.

Bosch Advisory - Bosch published an advisory that describes two vulnerabilities in their Praesensa Logging Application, Praesideo Logging Application, and Praesideo PC Call Station.

B&R Advisory - B&R published an advisory that describes an uncontrolled search path element vulnerability in multiple B&R products.

Dell Advisory - Dell published an advisory that discusses an improper access control vulnerability in their Precision Rack products.

Dassault Advisory - Dassault published an advisory that describes a cross-site scripting vulnerability in their 3DDashboard in 3DSwymer product.

Field Logic Advisory - JPCERT published an advisory that describes four vulnerabilities with known exploits in the Field Logic DataCube3 and DataCube4 products.

FortiGuard Advisory #1 - FortiGuard published an advisory that describes a stack-based buffer overflow vulnerability in their FortiOS product.

FortiGuard Advisory #2 - FortiGuard published an advisory that describes a double free vulnerability in their FortiOS product.

FortiGuard Advisory #3 - FortiGuard published an advisory that describes two Use of an externally controlled format string vulnerabilities in their FortiOS, FortiProxy, FortiPAM, and FortiSwitchManager products.

FortiGuard Advisory #4 - FortiGuard published an advisory that describes an improper check of unusual or exceptional conditions vulnerability in their FortiOS product.

FortiGuard Advisory #5 - FortiGuard published an advisory that describes an insufficient verification of data authenticity in their FortiOS and FortiProxy SSL-VPN products.

GE Healthcare Advisory #1 - GE Healthcare published an advisory that describes five vulnerabilities in their EchoPAC Software Only (SWO), EchoPAC TurnKey and ImageVault products.

GE Healthcare Advisory #2 - GE Healthcare published an advisory that describes three vulnerabilities in their Common Service Desktop (CSD) component used in ultrasound devices.

Hitachi Advisory - Hitachi published an advisory that discusses four vulnerabilities in their Developer's Kit for Java products.

HP Advisory #1 - HP published an advisory that discusses an uncontrolled search path element vulnerability in their business desktop and laptop computers.

HP Advisory #2 - HP published an advisory that discusses three vulnerabilities in multiple HP products. These are third-party (Intel) vulnerabilities.

HP Advisory #3 - HP published an advisory that discusses nine vulnerabilities in their desktop computers.

HP Advisory #4 - HP published an advisory that discusses an insecure inherited permissions vulnerability in their Omen notebook PCs.

HP Advisory #5 - HP published an advisory that discusses an improper access control vulnerability in multiple HP product lines.

HP Advisory #6 - HP published an advisory that describes an escalation of privilege vulnerability in multiple HP product lines.

HP Advisory #7 - HP published an advisory that discusses six vulnerabilities in multiple HP product lines. These are third-party (Intel) vulnerabilities.

HP Advisory #8 - HP published an advisory that discusses an improper neutralization of invalid characters in identifiers in web pages vulnerability in multiple HP products lines.

HPE Advisory #1 - HPE published an advisory that discusses OS command inject vulnerability in their SAN Switches.

HPE Advisory #2 - HPE published 39 new (or updated) Security Vulnerability Alerts (background here).

Insyde Advisory - Insyde published an advisory that describes three memory corruption vulnerabilities in their SMM product.

Palo Alto Networks Advisory - Palo Alto Networks published an advisory that discusses the TunnelVision vulnerabilities.

 

For more details about these disclosures, including links to 3rd party advisories, researcher reports and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-5-9bb - subscription required.