industrial control systems

A remote information‑disclosure weakness in Mitsubishi Electric’s MELSEC iQ‑F series CPU modules has been publicly described as a cleartext transmission of sensitive information over SLMP, enabling an attacker with network access to capture credentials and potentially read/write device values or...

CISA on August 28, 2025, published a batch of nine Industrial Control Systems (ICS) advisories covering critical vulnerabilities across Mitsubishi Electric, Schneider Electric, Delta Electronics, GE Vernova, Hitachi Energy, and ICONICS/Mitsubishi integrations — a coordinated disclosure that...

Mitsubishi Electric’s MELSEC iQ‑F family of CPU modules has been formally flagged with a network‑accessible vulnerability that allows unauthenticated remote actors to read and write device values — and in some deployments to halt program execution — because the affected product’s Modbus/TCP...

GE Vernova’s CIMPLICITY HMI/SCADA platform has been flagged in a recently circulated advisory as vulnerable to an Uncontrolled Search Path Element (CWE‑427) issue that, under the right local conditions, could allow a low‑privileged user to escalate privileges on affected hosts — the advisory...

Schneider Electric has acknowledged a high-severity vulnerability in its Modicon M340 family and several M340 communication modules that can be triggered remotely by a specially crafted FTP command and may cause a denial-of-service condition; the flaw was assigned CVE‑2025‑6625 and carries a...

CISA’s August 21, 2025 advisory bundle added three urgent entries to the growing list of industrial control system (ICS) and medical-device vulnerabilities security teams must treat as high priority this month. The agency published advisories for a denial-of-service vector in the Mitsubishi...

CISA’s August 19 advisory batch once again put industrial control systems at the center of urgent cybersecurity attention, flagging four distinct advisories that collectively underscore persistent weaknesses in building management, identity federation, solar-edge gateways, and distributed...

Siemens’ RUGGEDCOM APE1808 appliances carry high‑risk management‑plane vulnerabilities that can let an authenticated administrator—or an attacker who gains elevated credentials—execute arbitrary operating‑system commands and escalate local service privileges, creating a significant threat to...

CISA’s August 14 advisory bundle is a wake-up call for every industrial operator: thirty-two separate Industrial Control Systems (ICS) advisories were published, covering a sweeping range of Siemens and Rockwell products — from PLC simulators and engineering platforms to rugged network gear and...

Siemens’ SIPROTEC 5 family has resurfaced in industry advisories after researchers and the vendor disclosed a vulnerability that allows attackers with physical access to exhaust a device’s memory via its local USB port, causing temporary loss of network responsiveness; the issue is tracked as...

Siemens' widely deployed use of Wibu-Systems CodeMeter Runtime has again drawn scrutiny after a local privilege-escalation flaw (CVE-2025-47809) was published that can let an unprivileged user gain elevated access immediately after an unprivileged installation when the CodeMeter Control Center...

Siemens' COMOS engineering platform is again at the center of vendor and national cybersecurity advisories after an out‑of‑bounds write in a third‑party graphics library — tracked as CVE‑2024‑8894 — was linked to COMOS deployments and republished by authorities, raising fresh questions about...

Siemens has confirmed a widespread denial-of-service (DoS) vulnerability affecting multiple models in the SIPROTEC 4 and SIPROTEC 4 Compact line that can be triggered remotely by an unauthenticated attacker during interrupted file-transfer operations; the issue is tracked as CVE-2024-52504 and...

Rockwell Automation’s Micro800 line of programmable logic controllers (PLCs) has been the subject of a high-severity U.S. Cybersecurity and Infrastructure Security Agency (CISA) advisory republished on August 14, 2025, warning that multiple remotely exploitable vulnerabilities tied to Azure RTOS...

Siemens has republished an advisory confirming that several POWER METER models in the SICAM Q100 and Q200 families store SMTP credentials in cleartext — a design flaw that allows an authenticated local user to extract email account passwords from device storage or exported configuration files...

A local information-disclosure flaw in Rockwell Automation’s FactoryTalk Action Manager allows unauthenticated local clients to receive a reusable API token broadcast over a WebSocket, creating a pathway for attackers with local access to intercept credentials and manipulate the product’s...

Siemens has disclosed a broad, high-severity set of vulnerabilities affecting the SINEC family—spanning SINEC NMS, SINEC INS and devices running SINEC OS—and vendors and operators must treat these as urgent operational risks: multiple advisories published by Siemens ProductCERT show...

Rockwell Automation’s FLEX 5000 I/O modules have been flagged in a fresh CISA advisory for a remotely exploitable input‑validation flaw that can render analog modules non‑responsive until a manual power cycle; the advisory names two CVEs, assigns a CVSS v4 base score of 8.7, and urges immediate...

Rockwell’s advisory republication this week exposes a subtle but serious weakness in FactoryTalk Linx that—if present in your environment—lets an attacker bypass FTSP token validation and perform privileged driver management actions, and CISA is clear: update to FactoryTalk Linx v6.50 as the...

Schneider Electric’s EcoStruxure Power Monitoring Expert (PME) has been flagged in a coordinated advisory for a cluster of high‑impact vulnerabilities that, together, create multiple realistic attack paths into industrial monitoring infrastructure—issues that matter to Windows administrators...