Tuesday, May 13, 2025

Review – 4 Advisories Published – 5-13-25

Today CISA’s NCCIC-ICS published four control system security advisories for products from ABB Automation, and Hitachi Energy (3).

Advisories

ABB Advisory - This advisory describes two incorrect permission assignment for critical function vulnerabilities in the ABB Automation Builder product.

Hitachi Energy Advisory #1 - This advisory describes four vulnerabilities in Hitachi Energy MACH gateway station product.

Hitachi Energy Advisory #2 - This advisory describes a classic buffer overflow vulnerability in the Hitachi Energy Relion 670/650/SAM600-IO series products.

Hitachi Energy Advisory #3 - This advisory discusses 16 vulnerabilities (one with publicly available exploit) in the Hitachi Energy Service Suite.

 

For more information on these advisories, including links to exploits, as well as a discussion about a recent CISA information sharing policy change, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/4-advisories-published-5-13-25 - subscription required.
Posted by at
Labels: , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 
/* Use this with templates/template-twocol.html */