• 1
  • 2
  • 3 (current)
Thursday, 03.04.2025
14:00
US CERT (ICS)
Hitachi Energy RTU500 Series
Title
Hitachi Energy RTU500 Series
Published
April 3, 2025, 2 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-25-093-01
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.7 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: RTU500 series Vulnerabilities: Null Pointer Dereference, Insufficient Resource Pool, Missing Synchronization 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to cause a denial-of-service condition. 3. TECHNICAL DETAILS 3.1 AFFECTED ...
14:00
US CERT (ICS)
B&R APROL
Title
B&R APROL
Published
April 3, 2025, 2 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-25-093-05
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.2 ATTENTION: Exploitable remotely/low attack complexity Vendor: B&R Equipment: APROL Vulnerabilities: Inclusion of Functionality from Untrusted Control Sphere, Incomplete Filtering of Special Elements, Improper Control of Generation of Code ('Code Injection'), Improper Handling of Insufficient Permissions or Privileges , Allocation of Resources Without ...
14:00
US CERT (ICS)
Hitachi Energy TRMTracker
Title
Hitachi Energy TRMTracker
Published
April 3, 2025, 2 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-25-093-02
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 6.9 ATTENTION: Exploitable remotely/low attack complexity Vendor: Hitachi Energy Equipment: TRMTracker Vulnerabilities: Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection'), Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), Improper Neutralization of Input During Web ...
14:00
US CERT (ICS)
ABB Low Voltage DC Drives and Power Controllers CODESYS RTS
Title
ABB Low Voltage DC Drives and Power Controllers CODESYS RTS
Published
April 3, 2025, 2 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-25-093-04
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 8.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: ABB Equipment: DCT880 memory unit incl. ABB Drive Application Builder license (IEC 61131-3), DCT880 memory unit incl. Power Optimizer, DCS880 memory unit incl. ABB Drive Application Builder license (IEC 61131-3), DCS880 memory unit incl. DEMag, DCS880 ...
Tuesday, 01.04.2025
21:00
US CERT
Fast Flux: A National Security Threat
Title
Fast Flux: A National Security Threat
Published
April 1, 2025, 9 p.m.
URL
https://www.cisa.gov/news-events/cybersecurity-advisories/aa25-093a
Summary
Executive summary Many networks have a gap in their defenses for detecting and blocking a malicious technique known as “fast flux.” This technique poses a significant threat to national security, enabling malicious cyber actors to consistently evade detection. Malicious cyber actors, including cybercriminals and nation-state actors, use fast flux to ...
14:00
US CERT (ICS)
Rockwell Automation Lifecycle Services with Veeam Backup and Replication
Title
Rockwell Automation Lifecycle Services with Veeam Backup and Replication
Published
April 1, 2025, 2 p.m.
URL
https://www.cisa.gov/news-events/ics-advisories/icsa-25-091-01
Summary
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.4 ATTENTION: Exploitable remotely/low attack complexity Vendor: Rockwell Automation Equipment: Lifecycle Services with Veeam Backup and Replication Vulnerability: Deserialization of Untrusted Data 2. RISK EVALUATION Successful exploitation of this vulnerability could allow an attacker with administrative privileges to execute code on the target ...
  • 1
  • 2
  • 3 (current)

Last Updates

BOSCH PSIRT
15.01.2025
SIEMENS CERT
17.04.2025
US CERT
01.04.2025
US CERT (ICS)
17.04.2025

By Source

Archive

2025
2024
2023
2022
2021
2020
2019
2018
2017

Feeds