Today CISA’s NCCIC-ICS published four control systems security advisories for products from Rockwell Automation and ABB (3).
Advisories
Rockwell Advisory - This advisory describes a missing authentication for critical function vulnerability in the Rockwell 1715-AENTR EtherNet/IP Adapter.
ABB Advisory #1 – This advisory describes four vulnerabilities in the ABB T-MAC Plus product.
ABB Advisory #2 – This advisory discusses an incorrect resource transfer between spheres vulnerability in the ABB Ability Edgenius. This vulnerability is listed in the CISA KEV catalog.
ABB Advisory #3 – This advisory describes an uncontrolled search path element (for loading DLLs) vulnerability in the ABB Advant Master Online Builder.
Updates
Inductive Automation Update #1 - This update provides additional information on the Ignition advisory that was originally published on December 18th, 2026.
For more information on these advisories, and a list of 11 other Rockwell advisories published today, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/4-advisories-and-1-update-published-714 - subscription required.
No comments:
Post a Comment