Tuesday, November 16, 2021

Review - 2 Advisories and 1 Update Published – 11-16-21

Today, CISA’s NCCIC-ICS published two control system security advisories for products from Mitsubishi and FATEK. They also published an update for products from Mitsubishi.

Mitsubishi updated a second advisory today. If NCCIC-ICS does not cover that update on Thursday, I will address it this weekend.

Mitsubishi Advisory - This advisory describes an input validation vulnerability in the Mitsubishi GOT2000 series, GOT SIMPLE series, and GT SoftGOT2000 HMI.

FATEK Advisory - This advisory describes two vulnerabilities in the FATEK WinProladder PLC programming software.

Mitsubishi Update - This update provides additional information on an advisory that was originally published on February 18th, 2021 and most recently updated on July 29th, 2021.

For additional information on these advisories and updates, see my article on CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/2-advisories-and-1-update-published-cbf - subscription required.

No comments:

 
/* Use this with templates/template-twocol.html */