Review – Public ICS Disclosures – Week of 6-14-25

This week we have five vendor disclosures from Delta Electronics, HP, Sick, VMware, and WAGO (2). We also have three vendor updates from Moxa and Siemens (2). There are seven researcher reports for vulnerabilities in products from Fuji Electric. Finally, we have six exploits for vulnerabilities in products from Advantech, FortiGuard, Palo Alto Networks, Parrot, SIMCom, and WAGO.

Advisories

Delta Advisory - Delta published an advisory that discusses a code injection vulnerability (listed in the CISA Known Exploited Vulnerabilities catalog) in their Delta Academy site (https://preprod-secai-academy￾flow.deltaww.com).

HP Advisory - HP published an advisory that discusses an out-of-bounds read vulnerability in their Notebook and Desktop PCs.

Sick Advisory - Sick published an advisory that describes 20 vulnerabilities in their Field Analytics and Media Server products.

VMware Advisory - Broadcom published a software release notice for their VMware Tanzu Greenplum 7.5.0 product that addresses 21 vulnerabilities

WAGO Advisory #1 - CERT-VDE published an advisory that describes two vulnerabilities in the device manager component of multiple WAGO products.

WAGO Advisory #2 - CERT-VDE published an advisory that discusses 15 vulnerabilities in the WAGO Edge Controller product.

Updates

Moxa Update - Moxa published an update for their Multiple PT Switches advisory that was originally published on January 19^th, 2025, and most recently updated on February 26^th, 2025.

Siemens Update # 1 - Siemens published an update for their Questa and ModelSim advisory that was originally published on October 8^th, 2024.

Siemens Update #2 - Siemens published an update for their Elspec G5 Digital Fault Recorder advisory that was originally published on June 10^th, 2025.

Researcher Reports

Fuji Reports - Zero Day Initiative published seven reports of vulnerabilities in the Fuji Smart Editor.

Exploits

Advantech - Jay Turla published an exploit for a command injection vulnerability in the Advantech WISE 4060LAN.

FortiGuard Exploit - Shahid Parvez Hakim published an exploit for an insufficient session expiration vulnerability in the FortiGuard FortiOS SSL-VPN.

Palo Alto Networks Exploit - Cody Sixteen published a Metasploit module for a denial of service vulnerability in the Palo Alto Networks PAN-OS product.

Parrot Exploit - Mohammed Idrees Banyamer published an exploit for a kernel panic vulnerability in the Parrot QRD, Parrot Alpha-M, DJI QRD, and DJI Alpha-M drone operating systems.

SIMCom Exploit - SEC Consult published an exploit for a hidden functionality vulnerability in the SIMCom SIM7600G Modem.

WAGO Exploit - Ibrahimsql published an exploit for an OS command injection vulnerability in unnamed WAGO products.

 

For more information on these disclosures, including links to 3^rd party advisories, and researcher reports, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-6-e18 - subscription required.