windows ot security

CISA on June 9, 2026, republished Siemens ProductCERT advisory SSA-545643 for multiple vulnerabilities in KACO blueplanet inverters, warning that affected devices may allow attackers to derive service credentials from serial numbers and use them for unauthorized access. The advisory is not just...

CISA on June 4, 2026 republished Hitachi Energy’s May 26 advisory for ITT600 SA Explorer, warning that two high-severity libexpat-related vulnerabilities can let an attacker trigger denial of service when IEC 61850 server simulation is used in affected versions. That sentence is the operational...

CISA republished ABB’s advisory for CVE-2024-41975 on May 12, 2026, warning that ABB Automation Builder Gateway for Windows before version 2.9.0 can listen remotely by default on TCP port 1217, exposing PLC discovery to unauthenticated network attackers in industrial environments worldwide. The...

AVEVA Process Optimization has been placed on high alert after a coordinated advisory warned that multiple, high‑severity vulnerabilities in the product could allow remote code execution, SQL injection, privilege escalation, and disclosure of sensitive information — a set of conditions that...