Tuesday, July 12, 2022

Review – 1 Advisory and 1 Update Published – 7-12-22

Today, CISA’s NCCIC-ICS published a control system security advisory for products from Dahua and updated an advisory for products from Schneider Electric.

Dahua Advisory - This advisory describes five vulnerabilities in the Dahua DHI-ASI7213X-T1 facial recognition access controller.

Schneider Update - This update provides additional information on an advisory that was originally published on February 24th, 2022.

NOTE: Schneider has not made a change to either of their advisories (here and here) that formed the basis for the original NCCIC-ICS advisory.

 

For more information on the Schneider update oddity, the Dahua Advisory, and a Down the Rabbit Hole look at the ‘Secure and Trusted Communications Networks Act of 2019, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/1-advisory-and-1-update-published-14a - subscription required.

No comments:

 
/* Use this with templates/template-twocol.html */