Skip to content

Commit

Permalink
CISA Releases Five ICS Advisories - 20241218001 (#1130)
Browse files Browse the repository at this point in the history 
* CISA Releases Five ICS Advisories - 20241218001

* CISA Releases Five ICS Advisories - 20241218001

* CISA Releases Five ICS Advisories - 20241218001
  • Loading branch information
@Dinindu-Wick
Dinindu-Wick authored Dec 18, 2024
1 parent 28bac17 commit a63de7a
Showing 1 changed file with 29 additions and 0 deletions.
29 changes: 29 additions & 0 deletions docs/advisories/20241218001-CISA-Releases-Five-ICS-Advisories.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,29 @@
# CISA Releases Five ICS Advisories - 20241218001

## Overview

CISA has released five Industrial Control Systems (ICS) advisories around current security issues, vulnerabilities, and exploits on five products.

## What is vulnerable?

| **Product(s) Affected** | **Affected Version(s)** | **CVSS** |
|---|---|---|
| ThreatQuotient: ThreatQ Platform | ***Versions prior to 5.29.3*** | 8.7 |
| Hitachi Energy: TropOS devices series 1400/2400/6400 | ***All versions prior to 8.9.6*** | 5.3 |
| Rockwell Automation: PowerMonitor 1000 Remote | PM1k 1408-BC3A-485: ***Versions prior to 4.020***<br> PM1k 1408-BC3A-ENT: ***Versions prior to 4.020*** <br>PM1k 1408-TS3A-485: ***Versions prior to 4.020*** <br> PM1k 1408-TS3A-ENT: ***Versions prior to 4.020*** <br> PM1k 1408-EM3A-485: ***Versions prior to 4.020*** <br> PM1k 1408-EM3A-ENT: ***Versions prior to 4.020*** <br> PM1k 1408-TR1A-485: ***Versions prior to 4.020*** <br> PM1k 1408-TR2A-485: ***Versions prior to 4.020*** <br> PM1k 1408-EM1A-485: ***Versions prior to 4.020*** <br> PM1k 1408-EM2A-485: ***Versions prior to 4.020*** <br> PM1k 1408-TR1A-ENT: ***Versions prior to 4.020*** <br> PM1k 1408-TR2A-ENT: ***Versions prior to 4.020*** <br> PM1k 1408-EM1A-ENT: ***Versions prior to 4.020*** <br> PM1k 1408-EM2A-ENT: ***Versions prior to 4.020*** | 9.3 |
| Schneider Electric: Modicon Controllers | Modicon Controllers M241: ***All versions***<br> Modicon Controllers M251: ***All versions***<br> Modicon Controllers M258: ***All versions***<br> Modicon Controllers LMC058: ***All versions*** | 9.3 |
| BD Diagnostic Solutions: Multiple BD products | BD BACTEC Blood Culture System: ***All versions***<br> BD COR System: ***All versions***<br> BD EpiCenter Microbiology Data Management System: ***All versions***<br> BD MAX System: ***All versions***<br> BD Phoenix M50 Automated Microbiology System: ***All versions***<br> BD Synapsys Informatics Solution: ***All versions*** | 8.0 |

## What has been observed?

There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.

## Recommendation

The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframe of *48 hours...* (refer [Patch Management](../guidelines/patch-management.md)):

- ICSA-24-352-01 [ThreatQuotient ThreatQ Platform](https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-01)
- ICSA-24-352-02 [Hitachi Energy TropOS Devices Series 1400/2400/6400](https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-02)
- ICSA-24-352-03 [Rockwell Automation PowerMonitor 1000 Remote](https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-03)
- ICSA-24-352-04 [Schneider Electric Modicon](https://www.cisa.gov/news-events/ics-advisories/icsa-24-352-04)
- ICSMA-24-352-01 [BD Diagnostic Solutions Products](https://www.cisa.gov/news-events/ics-medical-advisories/icsma-24-352-01)

0 comments on commit a63de7a

Please sign in to comment.