Today CISA’s NCCIC-ICS published three control system security advisories for products from Mitsubishi Electric Europe, Delta Electronics and AVEVA. They also updated an advisory for products from Mitsubishi.
Mitsubishi Advisory - This advisory
describes seven vulnerabilities in the Mitsubishi smartRTU and INEA ME-RTU.
Delta Advisory - This advisory
describes three vulnerabilities in the Delta DOPSoft product.
AVEVA Advisory - This advisory
describes an uncontrolled search path element vulnerability in the AVEVA Platform
Common Services (PCS) Portal.
Mitsubishi Update - This update provides additional information on an advisory that was originally published on September 1st, 2020 and most recently updated on May 18th, 2021.
For more details about the advisories, including a
discussion about converting a two-year old NCCIC-ICS Alert to an Advisory, see
my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/3-advisories-and-1-update-published-ef5
- subscription required.
No comments:
Post a Comment