Public ICS Disclosures – Week of 11-17-18

This week we have a vendor disclosure for products from AVEVA.

The AVEVA advisory describes a DLL hijacking vulnerability in 3^rd party software included in Vijeo Citect and Citect SCADA products. This is the Schneider Software Update (SESU) vulnerability reported earlier this month.