Today CISA’s NCCIC-ICS published two control system security advisories for products from Iskra and Industrial Video & Control, as well as a medical device security advisory for products from Mirion Medical. They also updated two advisories for products from Mitsubishi Electric.
Advisories
Iskra Advisory - This
advisory
describes a missing authentication for critical function vulnerability in the
Iskra iHUB and iHUB Lite smart metering gateways.
Industrial Video
& Control Advisory - This advisory
describes a code injection vulnerability in the IVC Longwatch video
surveillance and monitoring system.
Mirion Advisory - This advisory describes three vulnerabilities in the Mirion EC2 Software NMIS BioDose.
Updates
Mitsubishi Update #1 -
This update
provides additional information on the MELSEC iQ-R Series/iQ-F Series advisory
that was originally published on June 6th, 2023, and most recently
updated on April 25, 2024.
NOTE: I briefly
discussed the updated Mitsubishi advisory on Sunday.
Mitsubishi Update #2 -
This update
provides additional information on the CNC Series advisory that was originally
published on July 24th, 2025.
NOTE: I briefly
discussed the updated Mitsubishi advisory on Sunday
For more information on these advisories, see my article at
CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/3-advisories-and-2-updates-published-59b
- subscription required.
Posts
No comments:
Post a Comment