Review – Public ICS Disclosures – Week of 10-18-25

This week we have bulk vendor disclosures from Moxa (6). There are eight additional vendor disclosures from ABB, Belden, HP (3), Pilz, Sauter, and Zyxel. We also have three vendor updates from ABB (2) and HP.

Bulk Disclosures

Bulk Advisories – Moxa

• CVE-2025-1679, CVE-2025-1680: Stored Cross-site Scripting (XSS) and Host Header Injection Vulnerabilities in Ethernet Switch,

• Security Enhancement: Modbus/TCP Discrete Input Access,

• Security Enhancement: Modbus/TCP Device Identification,

• Security Enhancement: SNMP Agent Default Community Name (public),

• Security Enhancement: SSH Weak MAC Algorithms Enabled, and

• Security Enhancement: SSH Weak Key Exchange Algorithms Enabled.

Advisories

ABB Advisory - ABB published an advisory that describes a heap-based buffer overflow vulnerability in their Terra AC wallbox.

Belden Advisory - Belden published an advisory that discusses the Blast-RADIUS vulnerability. Belden

HP Advisory #1 - HP published an advisory that discusses an out-of-bounds read vulnerability in multiple notebook and desktop PCs.

HP Advisory #2 - HP published an advisory that discusses two vulnerabilities in multiple notebook and desktop PCs.

HP Advisory #3 - HP published an advisory that discusses an out-of-bounds write vulnerability in multiple notebook PCs.

Pilz Advisory - CERT-VDE published an advisory that discusses an integer overflow or wraparound vulnerability (with publicly available exploits) in the Pilz PASvisu Runtime product.

Sauter Advisory - CERT-VDE published an advisory that describes six vulnerabilities in the Sauter modulo 6 devices.

Zyxel Advisory - Zyxel published an advisory that describes two vulnerabilities in their ZLD firewalls.

Updates

ABB Update #1 - ABB published an update that provides additional information on the ALS-mini-S4/S8 IP advisory that was originally published on October 20^th, 2025.

ABB Update #2 - ABB published an update that provides additional information on the CoreSense advisory that was originally published on April 16^th, 2025, and most recently updated on October 10^th, 2025.

HP Update - HP published an update that provides additional information on their AMD Transient Scheduler advisory that was originally published on July 10^th, 2025, and most recently updated on August 15^th, 2025.

 

For more information on these disclosures, including links to 3^rd party advisories, researcher reports, and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-10-174 - subscription required.