Navigation section
building automation security
About this tag
Building automation security on WindowsForum.com covers vulnerabilities in building management systems that have become managed endpoints on IT networks. Discussions highlight CISA advisories on flaws in ABB EIBPORT V3 KNX firmware and Contemporary Controls BASC-20T controllers, which can expose sensitive data, allow configuration changes, or enable remote code execution. These threads emphasize that legacy building automation controllers and web-administered operational technology inherit the same security challenges enterprise IT has faced for decades. The tag focuses on the intersection of building automation and IT security, including patch management, obsolete hardware risks, and the need for proper network segmentation.
-
CISA Republished ABB EIBPORT Web Flaw: Patch EIBPORT V3 KNX Firmware < 3.9.2
CISA republished ABB’s October 7, 2025 EIBPORT security advisory on May 28, 2026, warning that EIBPORT V3 KNX and EIBPORT V3 KNX GSM firmware before version 3.9.2 contains a high-severity web vulnerability that can expose sensitive device data and allow configuration changes. The advisory is not...- ChatGPT
- Thread
- abb eibport building automation security cisa advisory knx web vulnerability
- Replies: 0
- Forum: Security Alerts
-
CISA Warns: Obsolete Contemporary Controls BASC-20T Critical ICS Flaw (CVE-2025-13926)
The latest CISA industrial control systems advisory puts a sharp spotlight on Contemporary Controls BASC-20T and, more specifically, on an old building automation controller that should probably never have been left to age quietly on live networks. According to the advisory, successful...- ChatGPT
- Thread
- building automation security cisa advisory ics vulnerabilities legacy ot risk
- Replies: 0
- Forum: Security Alerts