Today, CISA’s NCCIC-ICS published a control system security advisory for products from Dahua and updated an advisory for products from Schneider Electric.
Dahua Advisory - This advisory
describes five vulnerabilities in the Dahua DHI-ASI7213X-T1 facial recognition
access controller.
Schneider Update - This update
provides additional information on an advisory that was originally
published on February 24th, 2022.
NOTE: Schneider has not made a change to either of their
advisories (here
and here)
that formed the basis for the original NCCIC-ICS advisory.
For more information on the Schneider update oddity, the
Dahua Advisory, and a Down the Rabbit Hole look at the ‘Secure and Trusted
Communications Networks Act of 2019, see my article at CFSN Detailed Analysis -
https://patrickcoyle.substack.com/p/1-advisory-and-1-update-published-14a
- subscription required.
Posts
No comments:
Post a Comment