Review – Public ICS Disclosures – Week of 1-11-24 – Part 3

For Part 3 we have one additional advisory for products from Siemens. We also have 17 vendor updates from Siemens. There are two researcher reports for vulnerabilities in products from Offis. Finally we have three exploits for products from ABB and Palo Alto Networks (2)

Advisories

Siemens Advisory - Siemens published an advisory that discusses an insertion of sensitive information into a log file vulnerability in their Siveillance Video Device Pack.

Updates

Siemens Update #1 - Siemens published an update for their User Management Component advisory that was originally published on December 12^th, 2023, and most recently updated on October 8^th, 2024.

Siemens Update #2 - Siemens published an update for their SIMATIC S7-1500 advisory that was originally published on October 8^th, 2024, and most recently updated on December 10^th, 2024.

Siemens Update #3 - Siemens published an update for their Siemens Engineering Platform advisory that was originally published on November 12^th, 2024.

Siemens Update #4 - Siemens published an update for their Socket.IO advisory that was originally published on September 10^th, 2024, and most recently updated on December 10^th, 2024.

Siemens Update #5 - Siemens published an update for their SIMATIC WinCC advisory that was originally published on April 9^th, 2024, and most recently updated on July 9^th, 2024.

Siemens Update #6 - Siemens published an update for their BlastRadius.Fail advisory that was originally published on July 9^th, 2024, and most recently updated on December 10^th, 2024.

Siemens Update #7 - Siemens published an update for their e OPC UA Implementations advisory that was originally published on September 12^th, 2023, and most recently updated on December 10^th, 2025.

Siemens Update #8 - Siemens published an update for their SCALANCE W-700 advisory that was originally published on June 11^th, 2024, and most recently updated on September 10^th, 2024.

Siemens Update #9 - Siemens published an update for their SIMATIC SCADA and PCS 7 systems advisory that was originally published on September 10^th, 2024, and most recently updated on November 12^th, 2024.

Siemens Update #10 - Siemens published an update for their SegmentSmack advisory that was originally published on April 14^th, 2020, and most recently updated on July 9^th, 2024.

Siemens Update #11 - Siemens published an update for their S7-1500 CPU devices advisory that was originally published on January 10^th, 2023, and most recently updated on June 11^th, 2024.

Siemens Update #12 - Siemens published an update for their PROFINET Stack advisory that was originally published on April 12^th, 2022, and most recently updated on July 9^th, 2024.

Siemens Update #13 - Siemens published an update for their SCALANCE products advisory that was originally published on December 13^th, 2022, and most recently updated on October 10^th, 2023.

Siemens Update #14 - Siemens published an update for their Mendix Runtime advisory that was originally published on September 10^th, 2024, and most recently updated on December 12^th, 2024.

Siemens Update #15 - Siemens published an update for their GNU/Linux subsystem advisory that was originally published on December 12^th, 2023, and most recently updated on December 10^th, 2024.

Siemens Update #16 - Siemens published an update for their Web Server of SIMATIC S7-1500 CPUs advisory that was originally published on October 8^th, 2024, and most recently updated on November 12^th, 2024.

Siemens Update #17 - Siemens published an update for their User Management Component advisory that was originally published on September 10^th, 2024, and most recently updated on November 12^th, 2024.

Researcher Reports

Offis Report #1 - Cisco Talos published a report that describes an improper restriction of operations within the bounds of a memory buffer in the Offis DCMTK DICOM library.

Offis Report #2 - Cisco Talos published a report that describes an improper restriction of operations within the bounds of a memory buffer in the Offis DCMTK DICOM library.

Exploits

ABB Exploit - Cyber Danube published an exploit for two vulnerabilities in the ABB AC500v3.

Palo Alto Networks Exploit #1 - An unidentified researcher published an exploit for an improper check for unusual or exceptional conditions vulnerability (reported in the CISA Known Exploited Vulnerabilities catalog) in the Palo Alto Networks PanOS product.

Palo Alto Networks Exploit #2 - SSD published an advisory for an OS command injection vulnerability in the Palo Alto Networks Expedition Migration Tool.

 

For more information on these disclosures, including links to 3rd party advisories and researcher reports, in addition to brief summaries of changes made in the updates, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-1-e6f - subscription required.