industrial security

Siemens has published a high‑severity security advisory (SSA‑485750) for SIDIS Prime that warns operators: all installations prior to V4.0.800 are affected by a broad cluster of third‑party and product‑level vulnerabilities and should be updated immediately or compensating controls applied...

A set of severe, high‑impact vulnerabilities in Lantronix’s EDS family of serial‑to‑Ethernet device servers — specifically the EDS3000PS and EDS5000 models — has put industrial and enterprise edge networks at risk of unauthenticated root‑level compromise. The U.S. Cybersecurity and...

Delta Electronics’ CNCSoft‑G2 has a newly disclosed file‑parsing vulnerability that allows a maliciously crafted project file to trigger an out‑of‑bounds write in the DPAX parser — a flaw that can lead to remote code execution in the context of the running process if a user opens the file...

A high‑severity industrial control systems advisory published on February 19, 2026, warns that Welker’s OdorEyes ECOsystem Pulse Bypass System with the XL4 controller is vulnerable to an unauthenticated control‑function flaw (tracked as CVE‑2026‑24790) that could let a remote actor manipulate...

Dragos’ 2026 Year‑in‑Review makes bluntly clear what industrial defenders have long feared: adversaries are no longer content to merely probe and persist inside industrial networks — they are mapping control loops, handing off footholds to specialized operators, and increasingly engineering...

The Ilevia EVE X1 Server family has been the subject of a coordinated advisory that lists multiple high‑severity vulnerabilities in firmware versions up to and including 4.7.18.0. These flaws—ranging from pre‑auth file disclosure and path traversal to unauthenticated OS command injection...

A remotely exploitable, high‑severity vulnerability in the Synectix LAN 232 TRIO serial‑to‑Ethernet adapter (CVE‑2026‑1633) leaves the device’s web management interface completely unprotected, allowing unauthenticated attackers to change critical configuration, erase device state, or...

MES PCs shipped by Festo Didactic that run Windows 10 were found to include a pre-installed copy of XAMPP containing a large bundle of outdated open‑source components — Apache, MariaDB and friends — and that bundled XAMPP is the root cause for dozens of recorded vulnerabilities that can be...

Delta Electronics’ DIAView has a command-injection flaw that lets project files execute shell commands, creating a direct path from a crafted project to arbitrary code running on Windows engineering hosts — a serious escalation risk for industrial control systems that rely on trusted engineering...

Schneider Electric has published a security notification confirming an Incorrect Default Permissions weakness in EcoStruxure™ Process Expert that could allow a local, low-privileged user to escalate privileges by modifying executable service binaries in the installation directory and waiting for...

Schneiderer Electric has confirmed that a long‑standing Intel microarchitectural side‑channel vulnerability can affect certain EcoStruxure™ Foxboro DCS configurations and has issued remediation and mitigation guidance for operators; affected installations should prioritize either migrating to...

Schneider Electric has confirmed that a broad family of its products that embed the CODESYS V3 runtime are affected by multiple high‑severity vulnerabilities in the CODESYS communication server — flaws that, left unaddressed, can lead to denial‑of‑service and, in many cases, arbitrary remote...

Festo has published a coordinated security advisory warning that firmware across a large swath of its automation portfolio exposes undocumented, remotely accessible functions — a documentation and design gap that can let networked attackers obtain full control of affected devices unless...

Schneider Electric has published coordinated fixes after researchers and internal teams disclosed memory‑corruption vulnerabilities in EcoStruxure Power Build Rapsody that allow specially crafted project (SSD) files to trigger heap corruption, double‑free and use‑after‑free conditions — flaws...

Siemens has confirmed that its RUGGEDCOM APE1808 industrial edge platform is affected by a fresh batch of high‑impact security flaws tied to third‑party components (Nozomi Guardian/CMC and integrated firewall/NGFW elements), and operators should treat the disclosure as urgent: Siemens...

Siemens has confirmed a temporary denial‑of‑service vulnerability in a broad family of RUGGEDCOM ROS devices that can be triggered by malformed input during the TLS certificate upload procedure of the device web service; operators should treat CVE‑2025‑40935 as a patch‑now advisory and update...