CISA’s September 2, 2025 bulletin that released four new Industrial Control Systems (ICS) advisories is a stark reminder that operational technology (OT) and energy-sector devices remain high-value targets—and that defenders must move faster than vendors and attackers to close windows of...
Delta Electronics’ engineering tool EIP Builder contains an XML External Entity (XXE) vulnerability (CVE-2025-57704) that can expose sensitive files when the application parses crafted XML, and vendors and national incident responders now recommend an immediate upgrade to mitigate the risk...
cisa
critical manufacturing
cve-2025-57704
delta electronics
eipbuilder
ics advisory
industrial control systems
industrial security
information disclosure
owasp xml
patch management
security best practices
software update
threat mitigation
vulnerability patch
xml external entity
xml parsing
xxe