firmware patching

CISA republished ABB’s advisory for CVE-2025-5517 on May 26, 2026, warning that certain ABB Terra AC wallbox electric-vehicle chargers can be affected by a heap-based buffer overflow triggered through specially crafted OCPP messages sent via charger-management infrastructure. The flaw is rated...

ABB’s AC500 V3 programmable logic controller line is affected by three remotely reachable vulnerabilities disclosed by ABB on February 24, 2026, and republished by CISA on May 12, 2026, with fixes available in AC500 V3 firmware 3.9.0 through Automation Builder 2.9.0. The headline is not that...

ABB’s WebPro SNMP Card PowerValue firmware line has three disclosed vulnerabilities affecting versions up to 1.1.8.k, with ABB’s fixed release identified as 1.1.8.p and CISA republishing the vendor advisory on May 12, 2026. The headline flaw is not exotic malware or a cinematic power-grid...

Hitachi Energy's Relion REB500, a cornerstone device for distributed busbar protection in modern substations, has been the subject of coordinated vulnerability disclosures that should be treated as urgent by utilities and integrators. Two privilege-related vulnerabilities — tracked as...

CISA’s decision to add CVE-2026-25108 — an OS command injection in Soliton Systems K.K.’s FileZen — to its Known Exploited Vulnerabilities (KEV) Catalog underscores the immediate, systemic risk posed by insecure file-transfer appliances and the operational reality that attackers are already...