The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
- Siemens Path Traversal TIA Portal
- Siemens in OPC Foundation Local Discovery Server
- Siemens JT Open and JT Utilities
- Siemens Adaptec maxView Application
- Siemens SCALANCE X-200IRT Devices
- Siemens SIPROTEC 5 Devices
- Siemens CPCI85 Firmware of SICAM A8000 Devices
- Siemens Mendix Forgot Password Module
- Siemens SCALANCE XCM332
- Siemens Industrial Products
- Siemens Teamcenter Visualization and JT2Go
- Siemens Polarion ALM
- Siemens SCALANCE X-200, X-200IRT, and X-300 Switch Families BadAlloc Vulnerabilities
- Datakit CrossCAD/Ware
- Mitsubishi Electric India GC-ENET-COM
Alerts, Updates, and Bulletins:
- Adobe Releases Security Updates for Multiple Products
- Mozilla Releases Security Advisories for Multiple Products
- Apple Releases Security Updates for Multiple Products
- Microsoft Releases Guidance for the BlackLotus Campaign
- CISA Adds One Known Exploited Vulnerability to Catalog
- CISA Adds Two Known Exploited Vulnerabilities to Catalog
- Shifting the Balance of Cybersecurity Risk: Security-by-Design and Default Principles
