Review – Public ICS Disclosures – Week of 5-9-26 – Part 1

This week is a moderately busy disclosure week. We have bulk vendor disclosures from FortiGuard (5), HP (6), HPE (6), and Palo Alto Networks (24). We have eleven additional vendor disclosures from Advantech, ELECOM, CODESYS, Philips, QNAP, Schneider (4), and Siemens (2). 

Advisories  

Bulk Vendor Disclosures – Forti Guard (5), 

Bulk Vendor Disclosures – HP (6), 

Bulk Vendor Disclosures – HPE (6), 

Bulk Vendor Disclosures – Palo Alto Networks (24) 

Advantech Advisory - Advantech published an advisory that describes an SQL injection vulnerability in multiple Advantech products. 

ELECOM Advisory - JP-CERT published an advisory that describes seven vulnerabilities in multiple ELECOM wireless LAN routers and access points. 

CODESYS Advisory - CODESYS published an advisory that describes a missing release of resource after effective lifetime vulnerability in their MODBUS-327 addon. 

Philips Advisory - Philips published an advisory that discusses the cPanel missing authentication for critical function vulnerability that was recently added to CISA’s Known Exploited Vulnerabilities catalog. 

QNAP Advisory - QNAP published an advisory that discusses the Dirty Frag vulnerabilities. 

Schneider Advisory #1 - Schneider published an advisory that describes a cleartext storage of sensitive information vulnerability in their EcoStruxure Machine Expert HVAC product. 

Schneider Advisory #2 - Schneider published an advisory that describes an insufficient entropy vulnerability in multiple Schneider products. 

Schneider Advisory #3 - Schneider published an advisory that describes path traversal vulnerability in the EasyLogic T150 and Saitel DP Remote Terminal Unit products. 

Schneider Advisory #4 - Schneider published an advisory that describes an insecure default initialization of resource vulnerability in their EcoStruxure Panel Server product. 

Siemens Advisory #1 - Siemens published an advisory that discusses an out-of-bounds write vulnerability in their RUGGEDCOM APE1808 Devices. 

Siemens Advisory #2 - Siemens published an advisory that describes two vulnerabilities in KACO Blueplanet Inverters. 

For more information on these disclosures, including links to 3rd party advisories, researcher reports, and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/public-ics-disclosures-week-of-5-2e4 - subscription required.