Review – Public ICS Disclosures – Week of 9-7-24 – Part 1

This week we have 25vvendor disclosures from ABB, Eaton, Endress+Hauser, Festo, FortiGuard, HP (2), HPE (7), Insyde, Palo Alto Networks (7), and Phoenix Contact (3).

Advisories

ABB Advisory - ABB published an advisory that discusses two vulnerabilities in their Relion 630 Series Protection Relays.

Eaton Advisory - Eaton published an advisory that describes three vulnerabilities in their Foreseer software.

Endress+Hauser Advisory - CERT-VDE published an advisory that describes a code injection vulnerability in the Endress+Hauser Echo Curve Viewer used in multiple products.

Festo Advisory - CERT-VDE published an advisory that discusses an improper restriction of operations within the bounds of a memory buffer in the Festo Didactic product line.

FortiGuard Advisory #1 - FortiGuard published an advisory that describes an authorization bypass via user controlled keys vulnerability in their FortiAnalyzer and FortiManager products.

FortiGuard Advisory #2 - FortiGuard published an advisory that describes an exposure of sensitive information to an unauthorized actor in their FortiSandbox product.

HP Advisory #1 - HP published an advisory that discusses a use after free vulnerability in their LaserJet and LaserJet Managed Printers.

HP Advisory #2 - HP published an advisory that describes an improper privilege management vulnerability in their Samsung Universal Print Driver for Windows.

HPE Advisory #1 - HPE published an advisory that discusses an information disclosure vulnerability in their HPE StoreEasy Servers.

HPE Advisory #2 - HPE published an advisory that discusses a denial of service vulnerability in their StoreEasy Servers.

HPE Advisory #3 - HPE published an advisory that discusses an information disclosure vulnerability in their ProLiant DL/XL, Synergy, and Edgeline Servers.

HPE Advisory #4 - HPE published an advisory that discusses a denial of service vulnerability in their ProLiant DL/XL, Synergy, and Edgeline Servers.

HPE Advisory #5 - HPE published an advisory that discusses five vulnerabilities in their NonStop Virtual Tape Repository (VTR).

HPE Advisory #6 - HPE published an advisory that discusses a denial of service vulnerability in their HP-UX 11i v3 ONC and NFS Software.

HPE Advisory #7 - HPE published an advisory that discusses a denial of service vulnerability in their HP-UX NFS product.

Insyde Advisory - Insyde published an advisory that discusses a divide by zero vulnerability in their FirmwarePerformancePei module.

Palo Alto Networks Advisory #1 - Palo Alto Networks published an advisory that describes an incorrect authorization vulnerability in their GlobalProtect Portal.

Palo Alto Networks Advisory #2 - Palo Alto Networks published an advisory that describes an expected behavior violation vulnerability in their Cortex XDR Agent.

Palo Alto Networks Advisory #3 - Palo Alto Networks published an advisory that describes a cleartext transmission of sensitive information vulnerability in their ActiveMQ Content Pack.

Palo Alto Networks Advisory #4 - Palo Alto Networks published an advisory that describes an improper neutralization of wildcards and matching symbols vulnerability in their PAN-OS products.

Palo Alto Networks Advisory #5 - Palo Alto Networks published an advisory that describes an exposure of sensitive information to an unauthorized control sphere vulnerability in their PAN-OS products.

Palo Alto Networks Advisory #6 - Palo Alto Networks published an advisory that discusses 29 vulnerabilities (two with known exploits) in their Prisma Access Browser.

Palo Alto Networks Advisory #7 - Palo Alto Networks published an advisory that describes a command injection vulnerability in their PAN-OS products.

Phoenix Contact Advisory #1 - Phoenix Contact published an advisory that describes an allocation of resources without limits or throttling in their mGuard devices.

Phoenix Contact Advisory #2 - Phoenix Contact published an advisory that discusses the regreSSHion  vulnerability in their mGuard products.

Phoenix Contact Advisory #3 - Phoenix Contact published an advisory that describes twelve vulnerabilities in their mGuard products.

 

For more details on these disclosures, including 3^rd party advisories and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-9-c5a - subscription required.