The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:
ICS Vulnerability Advisories:
- Siemens Parasolid
- Siemens Web Server Login Page of Industrial Controllers
- Siemens SINEC Network Management System Logback Component - Product Used in the Energy Sector
- Siemens SINUMERIK ONE and SINUMERIK MC
- Siemens RUGGEDCOM ROS
- Siemens QMS Automotive
- Omron NJ/NX-series Machine Automation Controllers
- Omron NJ/NX-series Machine Automation Controllers
- Siemens Teamcenter Visualization and JT2Go
- Siemens SCALANCE W1750D
- Siemens SICAM Q100
- Siemens Capital VSTAR (Update A)
- Siemens SCALANCE X-200 and X-200IRT Families (Update A)
- Siemens RUGGEDCOM ROS (Update A)
- LS ELECTRIC PLC and XG5000 (Update A)
- Delta Electronics DIAEnergie (Update A)
- Siemens Mendix SAML Module (Update A)
- Siemens SCALANCE and RUGGEDCOM Products (Update A)
- Siemens Questa and ModelSim (Update A)
- Siemens RUGGEDCOM Devices (Update C)
Alerts, Updates, and Bulletins:
- CISA Adds Seven Known Exploited Vulnerabilities to Catalog
- VMware Releases Security Updates
- Microsoft Releases November 2022 Security Updates
- Citrix Releases Security Updates for ADC and Gateway
- CISA Releases SSVC Methodology to Prioritize Vulnerabilities
- CISA Updates Advisory on Threat Actors Exploiting Multiple CVEs Against Zimbra Collaboration Suite
- Cisco Releases Security Updates for Multiple Products
