Thursday, May 22, 2025

Review – Advisories Published – 5-22-25

Today CISA’s NCCIC-ICS published two control system security advisories for products from Rockwell and Lantronix.

Advisories

Rockwell Advisory - This advisory discusses an improper restriction of XML external entity reference vulnerability in the Rockwell FactoryTalk Historian-ThingWorx Connection Server.

Lantronix Advisory - This advisory describes an improper restriction of XML external entity reference vulnerability in the Lantronix Device Installer.

 

For more information on these advisories, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/advisories-published-5-22-25 - subscription required.

Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 
/* Use this with templates/template-twocol.html */