The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
CISA Releases Two Industrial Control Systems Advisories
Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.
- Zebra ZTC Industrial ZT400 and ZTC Desktop GK420d
- Mitsubishi Electric CNC Series (Update D)
Alerts, Updates, and Bulletins:
- December 5 - CISA Adds Four Known Exploited Vulnerabilities to Catalog
- CISA Releases Advisory on Threat Actors Exploiting CVE-2023-26360 Vulnerability in Adobe ColdFusion
- December 4 - CISA Adds Two Known Exploited Vulnerabilities to Catalog
- CISA and Partners Release Joint Advisory on IRGC-Affiliated Cyber Actors Exploiting PLCs
- Apple Releases Security Updates for Multiple Products
- CISA Removes One Known Exploited Vulnerability From Catalog
