Review – Public ICS Disclosures – Week of 7-19-25 – Part 2

For Part 2 we have two additional vendor disclosures from National Instruments and Supermicro. We also have eight vendor updates from Broadcom (7) and Siemens.

Advisories

National Instruments Advisory - NI published an advisory that describes two vulnerabilities in their LabVIEW product. The vulnerabilities were reported by Michale Heinzl.

Supermicro Advisory - Supermicro published an advisory that discusses four transient execution vulnerabilities in multiple products.

Updates

Broadcom Update #1 - Broadcom published an update for their Linux Kernel advisory that was originally published on July 8^th, 2025.

Broadcom Update #2 - Broadcom published an update for their GNU Glibc Kernel advisory that was originally published on July 8^th, 2025.

Broadcom Update #3 - Broadcom published an update for their Linux Kernel advisory that was originally published on July 8^th, 2025.

Broadcom Update #4 - Broadcom published an update for their Linux Kernel SUN RPC Subsystem advisory that was originally published on July 8^th, 2025.

Broadcom Update #5 - Broadcom published an update for their Linux Kernel Vulnerable to Dangling Pointer advisory that was originally published on June 10^th, 2025, and most recently updated on June 15^th, 2025.

Broadcom Update #6 - Broadcom published an update for their Denial-of-Service advisory that was originally published on July 8^th, 2025.

Broadcom Update #7 - Broadcom published an update for their Path Transversal advisory that was originally published on June 10^th, 2025.

Siemens Update - Siemens published an update for their Denial of Service of ICMP advisory that was originally published on April 8^th, 2025, and most recently updated on July 10^th, 2025.

 

For more information on these disclosures, including links to 3^rd party advisories and researcher reports, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-7-b0f - subscription required.