Today, CISA’s NCCIC-ICS published five control system security advisories for products from Hitachi Energy and Schneider Electric. They also published an update for a medical device security advisory for products from Philips.
Advisories
Hitachi Energy
Advisory #1 - This advisory
describes an improper input validation vulnerability in the Hitachi Energy RTU500
series products.
Hitachi Energy Advisory
#2 - This advisory
describes five vulnerabilities in the Hitachi Energy MicroSCADA Pro.
Schneider Advisory #1
- This advisory
describes three vulnerabilities in multiple Schneider products.
Schneider Advisory #2
- This advisory
describes the use of a broken or risky cryptographic algorithm in the Schneider
owerLogic P5 product.
Schneider Advisory #3 - This advisory describes two vulnerabilities in the Schneider PowerLogic PM5500 and PowerLogic PM8ECC products.
Updates
Philips Update - This
update
provides additional information on the Vue PACS advisory that was originally
published on July 18th, 2024.
For more information on these advisories, including when
vendors released and updated their versions of these advisories, see my article
at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/5-advisories-and-1-update-published-abe
- subscription required.
Posts
No comments:
Post a Comment