Review – 7 Advisories and 2 Updates Published – 9-18-25

Today CISA’s NCCIC-ICS published control system security advisories for products from Dover Fueling, Cognex, Hitachi Energy (2), Schneider Electric, and Westermo (2). They also published an update for products from Mitsubishi and End-of-Train.

Advisories

Dover Advisory - This advisory describes three vulnerabilities in the Dover ProGauge MagLink LX4 products.

Cognex Advisory - This advisory describes nine vulnerabilities in the Cognex In-Sight Explorer and In-Sight Camera products.

Hitachi Energy Advisory #1 - This advisory discusses a deserialization of untrusted data vulnerability (with publicly available exploit) in the Hitachi Energy Service Suite.

NOTE: I briefly discussed this vulnerability on August 30^th, 2025.

Hitachi Energy Advisory #2 - This advisory discusses six vulnerabilities (two with publicly available exploits) in the Hitachi Energy Asset Suite product.

NOTE: I briefly discussed this vulnerability on August 30^th, 2025.

Schneider Advisory - This advisory describes two OS command injection vulnerabilities in the Schneider Saitel DR & Saitel DP remote terminal units.

Westermo Advisory #1 - This advisory describes an improper validation of syntactic correctness of input vulnerability in the Westermo WeOS 5 products.

NOTE: I briefly discussed this vulnerability on March 29^th, 2025.

Westermo Advisory #2 - This advisory describes an OS command injection vulnerability in the Westermo WeOS 5 product.

NOTE: I briefly discussed this vulnerability on July 6^th, 2025.

Updates

Mitsubishi Update - This update provides additional information on the FA Engineering Software advisory that was originally published on January 30^th, 2024, and most recently updated on February 13^th, 2025.

End-of-Train Update - This update provides additional information on the Remote Linking Protocol advisory that was originally published on July 10^th, 2025, and most recently updated on September 4^th, 2025.

 

For more information on these advisories, including links to 3^rd party advisories and exploits, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/7-advisories-and-2-updates-published-13d - subscription required.

Review – 4 Advisories and 1 Update Published – 9-6-22

Today, CISA’s NCCIC-ICS published four control system security advisories for products from Hitachi Energy, Cognex, AVEVA, and Triangle Microworks. They also updated an advisory for products from Delta Electronics.

 

Hitachi Advisory - This advisory describes three vulnerabilities in the Hitachi Energy TXpert Hub CoreTec 4 digital transformer monitoring and diagnostics device.

NOTE: I briefly discussed the vulnerabilities on May 14^th, 2022.

Cognex Advisory - This advisory describes three vulnerabilities in the Cognex 3D-A1000 Dimensioning System, an industrial smart camera.

AVEVA Advisory - This advisory describes six vulnerabilities in the AVEVA Edge (formerly InduSoft Web Studio).

NOTE: I briefly discussed these vulnerabilities on August 20^th, 2022.

Triangle Microworks Advisory - This advisory describes an access of uninitialized pointer vulnerabilities in the Triangle Microworks TMW IEC 61850 and TMW IEC 60870-6 (ICCP/TASE.2) Software Libraries.

Delta Update - This update provides additional information on an advisory that was originally published on September 9^th, 2021.

 

For more details about these advisories, including links to researcher reports, see my article at CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/4-advisories-and-1-update-published-ee3 - subscription required.

Review - 2 Advisories and 1 Update Published – 8-12-21

Today CISA’s NCCIC-ICS published two control system security advisories for products from Horner Automation and Cognex. They also updated an advisory for products from Sensormatic Electronics (Johnson Controls).

Horner Advisory - This advisory describes three vulnerabilities in the Horner Cscape control system application programming software.

Cognex Advisory - This advisory describes a deserialization of untrusted data vulnerability in the Cognex In-Sight OPC Server.

Sensormatic Update - This update provides additional information on an advisory that was originally reported on July 1^st, 2021.

For more details on the advisories, including links to reporting researchers, see CFSN Detailed Analysis - https://patrickcoyle.substack.com/p/2-advisories-and-1-update-published-1ae - subscription required.