Review – Public ICS Disclosures – Week of 7-26-25 – Part 2

For Part 2 this week we have an additional vendor disclosure from HPE. There are also four vendor updates from Broadcom, and HP (3). We also have 35 researcher reports for vulnerabilities in products from Eclipse, Ilevia (2), MedDream (4), QNAP (26), and Tesla (2). Finally, we have two exploits for products from AK-Nord and Helmholz.

Advisories

HPE Advisory - HPE published an advisory that discusses 12 vulnerabilities in their Telco Network Function Virtual Orchestrator product.

Updates

Broadcom Update - Broadcom published an update for their GNU Glibc advisory that was originally published on July 8^th, 2025.

HP Update #1 - HP published an update for their Intel 2025.1 IPU Chipset advisory that was originally published on March 10^th, 2025.

HP Update #2 - HP published an update for their UEFI Firmware advisory that was originally published on February 3^rd, 2022, and most recently updated on May 28^th, 2025.

HP Update #3 - HP published an update for their Intel PROSet/Wireless WiFi advisory that was originally published on March 13^th, 2025, and most recently updated on July 11^th, 2025.

Researcher Reports

Eclipse Report - Cisco Talos published a report about a buffer overflow vulnerability in the Eclipse ThreadX FileX RAM disk driver.

Ilevia Reports - Zero Science published two reports about vulnerabilities in the Ilevia EVE X1 Server. The report includes a link to exploit code.

MedDream Reports - Cisco Talos published four reports of vulnerabilities in the MedDream PACS Premium product. The reports include proof-of-concept code.

QNAP Reports #1 - ZDI published three reports about vulnerabilities in the QNAP TS-464 Samba.

QNAP Reports #2 - ZDI published 15 reports about vulnerabilities in the QNAP QHora-322 product.

QNAP Reports #3 - ZDI published 8 reports about vulnerabilities in the QNAP TS-464 product.

Tesla Reports - ZDI published two reports about vulnerabilities in the Tesla Wall Connector product.

Exploits

AK-Nord Exploit - Marcus Krüppel published an exploit for an insecure permissions vulnerability in the AK-Nord USB-Server-LXL Firmware.

Helmholz Exploit - M. Kadlec et al published an exploit for nine vulnerabilities in the Helmholz REX100 industrial router.

 

For more information on these disclosures, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-7-782 - subscription required.