The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
- Delta Electronics DMARS
- Johnson Controls Metasys
- Red Lion DA50N
- Siemens SCALANCE FragAttacks
- Siemens OpenSSL Vulnerabilities in Industrial Products
- Siemens PROFINET Stack Integrated on Interniche Stack
- Siemens Mendix
- Siemens SCALANCE W1700
- Siemens SCALANCE X-300 Switches
- Siemens SICAM A8000
- Siemens SIMATIC Energy Manager
- Siemens SIMATIC S7-400
- Siemens SIMATIC S7-1500 CPU GNU/Linux subsystem
- Siemens SIMATIC STEP 7 (TIA Portal)
- Siemens Simcenter Femap
- Siemens TIA Administrator
- Siemens Mendix
Alerts, Updates, and Bulletins:
- APT Actors Target ICS/SCADA Devices
- Microsoft Releases Advisory to Address Critical Remote Code Execution Vulnerability (CVE-2022-26809)
- CISA Adds 10 Known Exploited Vulnerabilities to Catalog
- CISA Adds One Known Exploited Vulnerability to Catalog
- Microsoft Releases April 2022 Security Updates
- Citrix Releases Security Updates for Multiple Products
- Apache Releases Security Advisory for Struts 2
- Juniper Networks Releases Security Updates for Multiple Products
- Cisco Releases Security Updates for Multiple Products
- ICSJWG Spring 2022 Virtual Meeting
