Review – 20 Advisories and 2 Updates Published – 5-15-25

Today CISA’s NCCIC-ICS published 20 control system security advisories for products from Schneider Electric, ECOVACS, and Siemens (18). They updated two advisories for products from Mitsubishi.

Advisories

Schneider Advisory - This advisory describes a stack-based buffer overflow vulnerability in the Schneider EcoStruxure Power Build Rapsody software.

ECOVACS Advisory - This advisory describes three vulnerabilities in the ECOVACS DEEBOT Vacuum and Base Station products.

SCALANCE Advisory - This advisory describes 12 vulnerabilities in the Siemens SCALANCE LPE9403.

RUGGEDCOM Advisory #1 - This advisory describes three client-side enforcement of servers-side security vulnerabilities in the Siemens RUGGEDCOM ROX II product.

RUGGEDCOM Advisory #2 - This advisory discusses two vulnerabilities in the Siemens RUGGEDCOM APE1808 products.

MS/TP Advisory - This advisory describes an improper input validation vulnerability in the Siemens MS/TP Point Pickup Module.

Mendix Advisory - This advisory describes an incorrect permissions assignment in the Siemens Mendix OIDC SSO modules.

APOGEE PXC Advisory - This advisory describes an expected behavior violation in the Siemens APOGEE PXC+TALON TC series products.

SIRIUS 3SK2 Advisory - This advisory describes three vulnerabilities in the Siemens SIRIUS 3RK3 Modular Safety System.

SIMATIC PCS Advisory - This advisory describes an insufficient session expiration vulnerability in the Siemens SIMATIC PCS neo products.

Polarian Advisory - This advisory describes four vulnerabilities in the Siemens Polarion products.

OZW Web Server Advisory - This advisory describes two vulnerabilities (with publicly available exploits) in the Siemens OZW Web Servers.

UMC Advisory - This advisory describes three vulnerabilities in the Siemens User Management Component of multiple products.

VersiCharge Advisory - This advisory describes two vulnerabilities in the Siemens VersiCharge AC Series EV Chargers.

IPC Advisory - This advisory describes an authentication bypass by spoofing vulnerability in the Siemens SIMATIC IPC RS-828A product.

Teamcenter Advisory - This advisory describes an out-of-bounds read vulnerability in the Siemens Teamcenter Visualization product.

SIPROTEC Advisory - This advisory discusses the Blast Radius vulnerability in the Siemens SIPROTEC and SICAM products.

Desigo Advisory - This advisory describes a missing authentication for critical function vulnerability in the Siemens Desigo CC product.

BACnet Advisory - This advisory describes an improper input validation vulnerability in the Siemens BACnet ATEC Devices.

INTRALOG Advisory - This advisory discusses eight vulnerabilities in the Siemens INTRALOG WMS product.

Updates

Mitsubishi Update #1 - This update provides additional information on the Multiple FA Engineering Software Products advisory that was originally published on March 14^th, 2024, and most recently updated on January 30^th, 2025.

Mitsubishi Update #2 - This update provides additional information on the MELSOFT MaiLab advisory that was originally published on July 18^th, 2024.

 

For more information on these advisories, including links to researcher reports and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/20-advisories-and-2-updates-published - subscription required.