Thursday, August 21, 2025

Review – 2 Advisories and 1 Update Published – 8-21-25

Today CISA’s NCCIC-ICS published one control system security advisory and a medical device security advisory for products from Mitsubishi Electric and FUJIFILM. They also published an updated advisory for products from Mitsubishi.

Advisories

Mitsubishi Advisory - This advisory  describes an improper handling of length parameter inconsistency vulnerability in the Mitsubishi MELSEC iQ-F Series CPU module.

FUJIFILM Advisory - This advisory describes an external control of assumed-immutable web parameter vulnerability in the FUJIFILM Synapse Mobility product.

Updates

Mitsubishi Update - This update provides additional information on the Air Conditioning Systems advisory that was originally published on June 26th, 2025.

 

For more information on these advisories, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/2-advisories-and-1-update-published-79a - subscription required.
Posted by at
Labels: , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)
 
/* Use this with templates/template-twocol.html */