Weekly ICS Vulnerability Report Highlights Critical Flaws in Industrial Control Systems

Cyble Research & Intelligence Labs (CRIL) has released its weekly ICS vulnerability report, uncovering multiple vulnerabilities that pose a significant threat to industrial control systems (ICS). The report, spanning from October 15 to October 21, 2024, highlights 13 vulnerabilities affecting well-known manufacturers like Siemens and Schneider Electric.

The Cybersecurity and Infrastructure Security Agency (CISA) shared the findings, emphasizing the urgent need for swift action to address these vulnerabilities. The vulnerabilities were identified across various companies, including Elvaco, Mitsubishi Electric, and Kieback&Peter, among others.

Of particular concern are vulnerabilities impacting Elvaco’s CMe3100 and Kieback&Peter’s DDC4000 Series. The Elvaco CMe3100, a communication gateway for remote energy meter reading, has been found online in 1,186 instances, primarily in Sweden. On the other hand, Kieback&Peter’s DDC4000 Series, used in HVAC management, has eight instances requiring immediate attention.

The report also delves into detailed vulnerability insights, highlighting critical vulnerabilities such as CVE-2024-3506 affecting Siemens’ Siveillance Video Camera and CVE-2023-8531 impacting Schneider Electric’s Data Center Expert. These vulnerabilities could compromise physical access controls and cryptographic signatures, respectively.

The report underscores the growing prevalence of high-severity vulnerabilities in the ICS sector, urging organizations to prioritize patching efforts and adopt robust mitigation strategies. CRIL recommends active monitoring of security advisories, implementing a risk-based vulnerability management approach, and enhancing patch management to safeguard critical infrastructure from potential cyber threats. By taking proactive measures and staying vigilant, businesses can strengthen their cybersecurity posture and protect against evolving threats in the ICS landscape.