Review – Public ICS Disclosures – Week of 8-2-25

We have a relatively light disclosure week. This week we have nine vendor disclosures from CODESYS (3), Dell, Draeger, Eaton, Hitachi, HPE, and Splunk. There are also seven vendor updates from HP (3), HPE, Mitsubishi, and Moxa (2). Finally, we have an exploit for products from Tigo.

Advisories

CODESYS Advisory #1 - CODESYS published an advisory that describes an incorrect default permissions vulnerability in their Control runtime systems.

CODESYS Advisory #2 - CODESYS published an advisory that describes a NULL pointer dereference vulnerability in their Control runtime system's CmpDevice component.

CODESYS Advisory #3 - CODESYS published an advisory that describes an incorrect permission assignment for critical resource vulnerability in their Control runtime system CmpOpenSSL component.

Dell Advisory - Dell published an advisory that discusses three vulnerabilities (one with publicly available exploit) in their ThinOS products.

Draeger Advisory - Draeger published an advisory that describes a missing authorization vulnerability in their  ICMHelper product.

Eaton Advisory - Eaton published an advisory that describes two vulnerabilities in their Rack PDU G4 product.

Hitachi Advisory - Hitachi published an advisory that discusses three vulnerabilities in their Cosminexus Developer's Kit.

HPE Advisory - HPE published an advisory that describes ten vulnerabilities in their Private Cloud AI.

Splunk Advisory #1 - Splunk published an advisory that discusses five vulnerabilities (two with publicly available exploits) in their AppDynamics Cluster Agent.

Splunk Advisory #2 - Splunk published an advisory that discusses 148 vulnerabilities in their On-premise Enterprise Console.

Updates

HP Update #1 - HP published an update for their Intel PROSet/Wireless WiFi advisory that was originally published on May 13^th, 2025.

HP Update #2 - HP published an update for their AMD Graphics Driver advisory that was originally published on February 11^th, 2025.

HP Update #3 - HP published an update for their Elan Fingerprint Sensor advisory that was originally published on April 10^th, 2025.

HPE Update - HPE published an update for their SANnav Management Portal advisory that was originally published on July 8^th, 2025.

Mitsubishi Update - Mitsubishi published an update for their GENESIS64 advisory that was originally published on May 15^th, 2025.

Moxa Update #1 - Moxa published an update for their OnCell 3120-LTE-1 advisory that was originally published on September 4^th, 2024.

Moxa Update #2 - Moxa published an update for their MGate MB3XXX advisory that was originally published on February 17^th, 2022.

Exploits

Tigo Exploit - Byte Reaper published an exploit for a command injection vulnerability in the Tigo Cloud Connect Advanced products.

 

For more information on these disclosures, including links to 3^rd party advisories, researcher reports, and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-8-d28 - subscription required.