Yesterday CISA’s NCCIC-ICS published updates for four control system security advisories for products from Siemens. Siemens published an additional update yesterday that was not covered by NCCIC-ICS. Schneider published six updates yesterday that were not addressed by NCCIC-ICS. I will be reviewing all of those updates this weekend.
Industrial Products Update - This update
provides additional information on an advisory that was originally
published on September 10th, 2019 and most
recently updated on May 11th, 2021.
UMC Stack Update - This update
provides additional information on an advisory that was originally
published on July 14th, 2020 and most
recently updated on April 13th, 2021.
SIPROTEC Update - This update
provides additional information on an advisory that originally
published on March 8th, 2018 and most
recently updated on March 12th, 2019.
Linux Based Products Update - This update provides additional information on an advisory that was originally published on May 11th, 2021 and most recently updated on June 8th, 2021.
For a more detailed look at these updates, and a commentary
on what little effect the delays in mitigating these vulnerabilities have had
on security actually means, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/4-updates-published
- subscription required.
Posts
No comments:
Post a Comment