Tuesday, November 14, 2023

Review – 2 Advisories Published – 11-14-23

Today, CISA’s NCCIC-ICS published two control system security advisories for products from Rockwell Automation and AVEVA.

Advisory

Rockwell Advisory - This advisory discusses an improper input validation vulnerability in the Rockwell SIS Workstation and ISaGRAF Workbench.

AVEVA Advisory - This advisory describes two vulnerabilities in the AVEVA Operations Control Logger application.


For more details about these advisories, including links to 3rd party advisories and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/2-advisories-published-11-14-23 - subscription required.

Posted by at
Labels: , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 
/* Use this with templates/template-twocol.html */