Review – Public ICS Disclosures – Week of 1-25-25 – Part 1

This week we have vendor disclosures from ABB, Dell, GE Vernova, Hitachi (8), HPE (2), Medtronic, and Moxa.

Advisories

ABB Advisory - ABB published an advisory that describes a PHP remote file inclusion vulnerability in their FLXeon Controllers.

Dell Advisory - Dell published an advisory that discusses four vulnerabilities (three with publicly available exploits) in their Wyse Device Agent.

GE Vernova Advisory - GE published an advisory that describes vulnerabilities in their S1 Agile Engineering Tool Suite. The advisory is only available to registered customers.

Hitachi Advisory #1 - Hitachi published an advisory that discusses an exposure of sensitive information to an unauthorized actor vulnerability in their Ops Center Administrator and Common Services products.

Hitachi Advisory #2 - Hitachi published an advisory that discusses an improper restriction of rendered UI layers or frames vulnerability in their JP1/ServerConductor/Deployment Manager.

Hitachi Advisory #3 - Hitachi published an advisory that discusses two vulnerabilities in their Cosminexus HTTP Server and Hitachi Web Server.

Hitachi Advisory #4 - Hitachi published an advisory that discusses an inclusion of functionality from untrusted control sphere vulnerability in their Cosminexus HTTP Server and Hitachi Web Server.

Hitachi Advisory #5 - Hitachi published an advisory that discusses an improperly controlled sequential memory allocation vulnerability in their Cosminexus HTTP Server.

Hitachi Advisory #6 - Hitachi published an advisory that discusses an allocation of resources without limits or throttling vulnerability in their Cosminexus HTTP Server.

Hitachi Advisory #7 - Hitachi published an advisory that discusses two vulnerabilities in their Cosminexus HTTP Server and Hitachi Web Server.

Hitachi Advisory #8 - Hitachi published an advisory that discusses 45 vulnerabilities in their Hitachi Disk Array Systems.

HPE Advisory #1 - HPE published an advisory that describes five vulnerabilities in their Aruba Networking Fabric Composer.

HPE Advisory #2 - HPE published an advisory that discusses the Ransacked vulnerabilities.

Medtronic Advisory - Medtronic published an advisory that discusses the BeyondTrust command injection vulnerability.

Moxa Advisory - Moxa published an advisory that describes an out-of-bounds write vulnerability in their PT Switches.

 

For more information on these disclosures, including links to 3rd party advisories, researcher reports, and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-1-020 - subscription required.