The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
CISA Releases Two Industrial Control Systems Advisories
Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.
- Schneider Electric EcoStruxure Power Monitoring Expert and Power Operation Products
- Rockwell Automation FactoryTalk Linx
Alerts, Updates, and Bulletins:
- CISA Adds One Known Exploited Vulnerability to Catalog
- Cisco Releases Security Advisory for IOS XE Software Web UI
- CISA, FBI, and MS-ISAC Release Joint Advisory on Atlassian Confluence Vulnerability CVE-2023-22515
- CISA, NSA, FBI, and International Partners Release Updated Secure by Design Guidance
- CISA Releases New Resources Identifying Known Exploited Vulnerabilities and Misconfigurations Linked to Ransomware
