Review – Public ICS Disclosures – Week of 9-6-25 – Part 1

This week we have bulk vendor disclosures HP (6). There are also 12 vendor disclosures from Beckhoff, Bender (2), Delta Electronics, GE Vernova, Hitachi Energy, HPE (3), NI (2), and Palo Alto Networks.

Bulk Vendor Disclosures – HP

Intel UPLR2 Xeon Processor BIOS Security Updates,

Intel 2025.1 IPU – BIOS February 2025 Security Update,

AMD SMM Vulnerabilities February 2025 Security Update,

HP Hotkey Support – Escalation of Privilege,

Intel Core Ultra Processor Firmware Security Update, and

Poly Lens Desktop Application – Privilege Escalation,

Advisories

Beckhoff Advisory - Beckhoff published an advisory that describes a deserialization of untrusted data vulnerability in their TwinCAT 3 Engineering product.

Bender Advisory #1 - CERT-VDE published an advisory that describes an insufficiently protected credentials vulnerability in the Bender charge controller products.

Bender Advisory #2 - CERT-VDE published an advisory that describes a cleartext transmission of sensitive information vulnerability in the Bender charge controller products.

Delta Advisory - Delta published an advisory that describes two path traversal vulnerabilities in their DIALink product.

GE Advisory - GE published an advisory that discusses four vulnerabilities in their  Control Server, OTArmor, and Baseline Security Center (BSC) products.

Hitachi Energy Advisory - Hitachi Energy published an advisory that discusses seven vulnerabilities (one with publicly available exploit) in their RTU500 series product.

HPE Advisory #1 - HPE published an advisory that discusses two vulnerabilities (one with publicly available exploit) in their Telco Unified Correlation and Automation (UCA) product.

HPE Advisory #2 - HPE published an advisory that discusses two vulnerabilities in their Intelligent Assurance Using Apache product.

HPE Advisory #3 - HPE published an advisory that discusses two vulnerabilities in their Telco Intelligent Assurance product.

NI Advisory #1 - NI published an advisory that describes a path traversal vulnerability in their USI Registration tool for DataPlugins.

NI Advisory #2 - NI published an advisory that describes a relative path traversal vulnerability in their Digilent WaveForms product.

PAN Advisory #1 - PAN published an advisory that discusses eight vulnerabilities in their Prisma Access Browser.

PAN Advisory #2 - PAN published an advisory that describes an exposure of sensitive information to an unauthorized control sphere vulnerability in their User-ID Credential Agent.

PAN Advisory #3 - PAN published an advisory that describes an insertion of sensitive information into a log file vulnerability in their Cortex XDR Microsoft 365 Defender Pack.

 

For more information on these disclosures, including links to 3^rd party advisories, researcher reports, and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-9-97a - subscription required.