Today, CISA’s NCCIC-ICS published two control system security advisories for products from HID Global and Advantech. They also updated three advisories for products from Hitachi Energy, Mitsubishi Electric, and Delta Electronics.
Advisories
HID Advisory - This
advisory
describes a modification of assumed mutable data in the HID SAFE using the
optional External Visitor Manager portal.
Advantech Advisory - This advisory describes three vulnerabilities in the Advantech WebAccess/SCADA product.
Updates
Hitachi Update - This
update
provides additional information on an advisory that was originally published on
April 6th, 2021 and most recently updated on April 20th,
2021.
Mitsubishi Update -
This update
provides additional information on an advisory that was originally published on
November 29th, 2022.
Delta Update - This update
provides additional information on an advisory that was originally published on
September 13th, 2022 (not 9-19-22).
For more details about these advisories, including a brief
discussion about CISA’s disclosure of vulnerabilities found inhouse – see my
article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/2-advisories-and-3-updates-published
- subscription required.
Posts
No comments:
Post a Comment