Thursday, September 9, 2021

Review - 3 Advisories and 1 Update Published – 9-9-21

Today CISA’s NCCIC-ICS published three control system security advisories for products from Mitsubishi Electric Europe, Delta Electronics and AVEVA. They also updated an advisory for products from Mitsubishi.

Mitsubishi Advisory - This advisory describes seven vulnerabilities in the Mitsubishi smartRTU and INEA ME-RTU.

Delta Advisory - This advisory describes three vulnerabilities in the Delta DOPSoft product.

AVEVA Advisory - This advisory describes an uncontrolled search path element vulnerability in the AVEVA Platform Common Services (PCS) Portal.

Mitsubishi Update - This update provides additional information on an advisory that was originally published on September 1st, 2020 and most recently updated on May 18th, 2021.

For more details about the advisories, including a discussion about converting a two-year old NCCIC-ICS Alert to an Advisory, see my article at CFSN Detailed Analysis - - subscription required.

No comments:

/* Use this with templates/template-twocol.html */