CISA released eight Industrial Control Systems (ICS) advisories on April 25, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
ICSA-24-116-01 Multiple Vulnerabilities in Hitachi Energy RTU500 Series
ICSA-24-116-02 Hitachi Energy MACH SCM
ICSA-24-116-03 Siemens RUGGEDCOM APE1808 Devices Configured with Palo Alto Networks Virtual NGFW
ICSA-24-116-04 Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC
ICSA-23-143-03 Mitsubishi Electric MELSEC Series CPU Module (Update D)
ICSA-23-157-02 Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update A)
ICSA-24-102-09 Rockwell Automation 5015-AENFTXT (Update A)
ICSA-24-067-01 Chirp Systems Chirp Access (Update B)
CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations.