Today, CISA’s NCCIC-ICS published two control system security advisories for products from Hitachi Energy and Schneider Electric. I also briefly look at Cyber Tuesday releases from Schneider and Siemens.
Advisories
Hitachi Energy Advisory - This advisory
describes two stack-based buffer overflow vulnerabilities in the Hitachi Energy
RTU500 series products.
Schneider Advisory - This advisory describes a deserialization of untrusted data vulnerability in the Schneider Interactive Graphical SCADA System (IGSS).
Announcements
Cyber Tuesday Announcements - CISA may cover some of these on Thursday (mostly the new Siemens advisories). I will discuss those missed by CISA this weekend.
• Siemens published
12 advisories and 11 updates.
• Schneider published 1 advisory and three updates.
For more details about these CISA advisories, see my article
at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/2-advisories-published-8-8-23
- subscription required.
Posts
No comments:
Post a Comment