ICS Vulnerabilities - 8 Industrial Giants Release Advisories

What Happened

On the latest Patch Tuesday, eight industrial giants released new security advisories to address critical vulnerabilities in their products. This includes major players like Siemens, Schneider Electric, Aveva, Rockwell Automation, ABB, Phoenix Contact, Mitsubishi Electric, and Moxa. These advisories are crucial for maintaining the security of industrial control systems (ICS).

Key Advisories

Siemens published nine advisories, highlighting a critical vulnerability in older Wi-Fi devices, specifically the Scalance W-700. They also addressed high-severity issues in various products, including:

• Sinec NMS: Authentication/authorization bypass
• Ruggedcom Crossbow: Privilege escalation and DoS
• Industrial Edge Management: Authorization bypass

Schneider Electric released three advisories, including one on the BlastRadius vulnerability affecting their Modicon Networking Managed Switch. They also patched medium-severity vulnerabilities in their PowerChute and Easergy MiCOM products.

Aveva warned customers about a critical missing authorization vulnerability in Pipeline Simulation. Meanwhile, Rockwell Automation advised customers to disconnect PLCs from the internet due to potential threats from Iran-linked groups targeting critical infrastructure.

ABB issued four advisories, with three addressing vulnerabilities in third-party components and one concerning a DoS vulnerability in their System 800xA product line. Phoenix Contact and Mitsubishi Electric also reported multiple vulnerabilities across their products, including DoS and information disclosure issues.

Why It Matters

These advisories are significant because they address vulnerabilities that could be exploited by threat actors, potentially leading to severe disruptions in critical infrastructure. The advisories come at a time when cyber threats to industrial systems are increasing, making timely patching essential for security.

What You Should Do