CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 25, 2024
The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
CISA Releases Eight Industrial Control Systems Advisories
Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.
- Multiple Vulnerabilities in Hitachi Energy RTU500 Series – Used in the Energy Sector
- Hitachi Energy MACH SCM – Used in the Energy Sector
- Siemens RUGGEDCOM APE1808 Devices Configured with Palo Alto Networks Virtual NGFW
- Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC – Used in the Energy and Water and Wastewater Sectors
- Mitsubishi Electric MELSEC Series CPU Module (Update D)
- Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update A)
- Rockwell Automation 5015-AENFTXT (Update A)
- Chirp Systems Chirp Access (Update B)
