Today, CISA’s NCCIC-ICS published a control system security advisory for products from Mitsubishi.
The link provided in CISA’s ‘CISA Releases One Industrial Control Systems Advisory’ page goes to a twelve day old advisory for products from INEA. The same advisory that I reported (removed from behind the paywall) may be linked to an associated Mitsubishi product. Interesting coincidence.
Advisories
Mitsubishi Advisory -
This advisory
describes a dependency on vulnerable third-party component vulnerability in the
Mitsubishi MELIPC, MELSEC iQ-R, and MELSEC Q Series products.
For more details about this advisory, including a discussion
about Intel fixes for 3rd party vulnerabilities, see my article at
CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/1-advisory-published-5-2-23
- subscription required.
Posts
No comments:
Post a Comment