Thursday, April 7, 2022

Review – 2 Advisories and 1 Update Published – 4-7-22

Today, CISA’s NCCIC-ICS published two control system security advisories for products from ABB and PEPPERL+FUCHS. They also updated an advisory for products from Mitsubishi Electric.

ABB Advisory - This advisory describes three vulnerabilities in the ABB Symphony Plus network interface modules.

NOTE: I briefly discussed these vulnerabilities on February 5th, 2022.

PEPPPERL+FUCHS Advisory - This advisory discussing 19 vulnerabilities (five with known exploits) in the PEPPERL+FUCHS Wireless HART-Gateway industrial networking devices.

NOTE: I briefly discussed these vulnerabilities in August of last year.

Mitsubishi Update - This update provides additional information on an advisory that was originally published on October 5th, 2021.

 

For more information on these advisories, including links to  3rd party advisories and exploits, as well as a discussion about the ‘discontinued’ Mitsubishi advisory, see my article on CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/2-advisories-and-1-update-published-d99 - subscription required.

No comments:

 
/* Use this with templates/template-twocol.html */