Today, CISA’s NCCIC-ICS published a control systems security advisory for products from Unitronics. They also updated two advisories for products from Mitsubishi.
Advisories
Unitronics Advisory - This advisory describes a storing passwords in a recoverable format vulnerability in the Unitronics Vision Standard PLCs.
Updates
Mitsubishi Update #1 - This update provides additional information on an advisory that was originally published on October 14th, 2021 [removed from paywall] and most recently updated on October 13th, 2022 (not the dates reported in Section 5 of the advisory).
Mitsubishi Update #2
- This update
provides additional information on an advisory that was originally published on
September 7th, 2021 and most recently updated on October 13th,
2022.
For more details about these advisories, including a
down-the-rabbit hole look at a missing Mitsubishi update that leads to more
holes in the NVD.NIST.gov database, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/1-advisory-and-2-updates-published-ef9
- subscription required.
Posts
No comments:
Post a Comment