The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
CISA Releases Four Industrial Control Systems Advisories
Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.
- Dover Fueling Solutions MAGLINK LX Console
- Phoenix Contact TC ROUTER and TC CLOUD CLIENT
- Socomec MOD3GP-SY-120K
- Delta Electronics CNCSoft-B DOPSoft (Update)
Alerts, Updates, and Bulletins:
- CISA, FBI, and CNMF Release Advisory on Multiple Nation-State Threat Actors Exploit CVE-2022-47966 and CVE-2022-42475
- Cisco Releases Security Advisories for Multiple Products
- CISA Releases Update to Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells
- CISA Releases Capacity Enhancement Guide to Strengthen Agency Resilience to DDoS Attack
- CISA Adds One Known Vulnerability to Catalog
