ics security

Poland’s late‑December assault on distributed energy sites and a major combined heat‑and‑power plant exposes a dangerous truth: the industrial edge — those internet‑facing routers, VPN gateways, RTUs, HMIs, and serial servers that sit between the internet and critical control systems — remains...

Columbia Weather Systems’ MicroServer devices have been flagged in a recent advisory as containing multiple firmware weaknesses that, if chained, could allow an attacker to redirect SSH sessions to a malicious host, seize administrative control of the web portal, and gain limited interactive...

Inductive Automation’s Ignition platform is the subject of a fresh, high‑impact advisory that warns an authenticated administrator can upload a malicious project containing Python scripts (Jython) which the Ignition Gateway executes with the Gateway service account privileges — and on Windows...

Mitsubishi Electric’s GT Designer3 — the engineering suite used to build and transfer HMIs for GOT series panels — remains in the crosshairs of ICS security teams after coordinated disclosures and multiple CISA advisories identified serious weaknesses in GT Designer3, the associated GT SoftGOT...

MAXHUB Pivot’s password‑reset weakness is a serious, actionable vulnerability that demands immediate attention from administrators who manage MAXHUB fleet services or integrate Pivot-managed displays into corporate and operational networks. The vendor and coordinating agency recommend an urgent...

A severe, unauthenticated remote code‑execution vulnerability in Industrial Video & Control’s Longwatch video surveillance and monitoring platform has been disclosed by CISA: an exposed HTTP endpoint in Longwatch versions 6.309 through 6.334 allows specially crafted HTTP GET requests to execute...

The newly disclosed advisory for Iskra’s iHUB and iHUB Lite smart‑metering gateways warns of a severe, remotely exploitable weakness: the devices’ web management interface can be accessed and used to change critical settings without any authentication, allowing an unauthenticated attacker to...

A coordinated advisory published for the Zenitel TCIV-3+ intercom — attributed to Claroty Team82 researchers Nir Tepper and Noam Moshe and distributed via government channels — warns of multiple critical, remotely exploitable vulnerabilities including several OS command‑injection flaws, an...

Schneider Electric has published an urgent security notification and accompanying fixes for multiple vulnerabilities in PowerChute Serial Shutdown; operators should treat this as a high-priority patching and hardening task because the issues include path traversal, insufficient brute‑force...

Rockwell Automation’s disclosure that the Studio 5000 Simulation Interface ships with two high‑severity flaws — a path‑traversal/local code execution bug and a local SSRF that can force outbound SMB connections to harvest NTLM hashes — sharpens a familiar but urgent warning for ICS/OT operators...

General Industrial Controls’ Lynx+ Gateway has been flagged in a CISA advisory as containing multiple high‑severity vulnerabilities that are remotely exploitable with low complexity — including weak password requirements, missing authentication checks on critical web server functions, and...

Cyble’s weekly vulnerability roundup paints a stark picture: defenders are being flooded with high-severity flaws, public Proof‑of‑Concepts (PoCs), and—critically—several vulnerabilities that threaten both IT estates and the physical world of airports and industrial control systems. Background /...

A carefully packaged advisory claiming multiple high‑severity vulnerabilities in Advantech DeviceOn/iEdge has been circulated in CSAF format; it lists four CVE identifiers (CVE‑2025‑64302, CVE‑2025‑62630, CVE‑2025‑59171, CVE‑2025‑58423), assigns CVSS v3 and v4 scores in the high range (up to...

Radiometrics’ VizAir—a piece of equipment trusted at airports worldwide to detect wind shear and other hazardous low‑level wind phenomena—has been the subject of an urgent security advisory that elevates the product from “operational asset” to high‑risk attack surface for aviation...

CISA’s latest bulletin delivers a targeted wake-up call for operators and administrators of industrial control systems: five advisories were released addressing vulnerabilities in widely deployed ICS products, touching vendors from ABB and Siemens to Carrier and niche tooling used for protocol...

CISA’s publication of a package of ten Industrial Control Systems (ICS) advisories is a wake‑up call to every Windows administrator, OT engineer, and security leader who manages the overlap of enterprise IT and operational technology: these vulnerabilities span PLCs, HMIs, engineering...

CISA Releases Thirteen Industrial Control Systems Advisories — what operators, integrators and security teams must do next by [Staff Reporter], October 16, 2025 CISA published a consolidated release of thirteen Industrial Control Systems (ICS) advisories on October 16, 2025, calling attention to...

Hitachi Energy’s MACH GWS gateways have been placed squarely in the crosshairs of coordinated vulnerability disclosures this spring, with multiple flaws that can impact confidentiality, integrity and—most pressingly—availability in operational networks; CISA republished Hitachi’s advisory...

Siemens has published an urgent security advisory for its SIMATIC ET 200SP communication processors after a critical authentication weakness (CVE-2025-40771) was found in CP 1542SP-1 and CP 1543SP-1 variants: affected firmware versions prior to V2.4.24 do not properly authenticate configuration...

Rockwell Automation has published an urgent security advisory disclosing two high‑severity local privilege‑escalation flaws in FactoryTalk Linx that allow an authenticated Windows user to elevate to SYSTEM by abusing MSI “repair” behavior — vulnerabilities tracked as CVE‑2025‑9067 and...