Review – 3 Advisories Published – 2-20-24

Today, CISA’s NCCIC-ICS published three control system security advisories for products from Mitsubishi Electric, CISA and Commend.

Advisories

Mitsubishi Advisory - This advisory discusses an improper input validation vulnerability in the Mitsubishi Electrical discharge machines.

CISA Advisory - This advisory describes two vulnerabilities in the CISA Industrial Control Systems Network Protocol Parsers (ICSNPP) - Ethercat Zeek Plugin.

Commend Advisory - This advisory describes three vulnerabilities in the Commend WS203VICM video door station.

 

For more details about these advisories, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/3-advisories-published-2-20-24 - subscription required.