Review – 1 Advisory and 1 Update Published – 3-15-22

Today CISA’s NCCIC-ICS published a control system security advisory for products from ABB. They also updated an advisory for products from PTC.

ABB Advisory - This advisory describes an execution with unnecessary privileges vulnerability in the ABB OPC Server for AC 800M.

NOTE: I briefly discussed this vulnerability back on February 5^th, 2022.

PTC Update - This update provides additional information on an advisory (Access:7) that was originally published on March 8^th, 2022 and most recently updated on March 10^th, 2022.

 

For more details on these advisories, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/1-advisory-and-1-update-published-ded - subscription required.