CISA released eight Industrial Control Systems (ICS) advisories on April 25, 2024. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
[ul]
[li]ICSA-24-116-01 Multiple Vulnerabilities in Hitachi Energy RTU500 Series[/li][li]ICSA-24-116-02 Hitachi Energy MACH SCM[/li][li]ICSA-24-116-03 Siemens RUGGEDCOM APE1808 Devices Configured with Palo Alto Networks Virtual NGFW[/li][li]ICSA-24-116-04 Honeywell Experion PKS, Experion LX, PlantCruise by Experion, Safety Manager, Safety Manager SC[/li][li]ICSA-23-143-03 Mitsubishi Electric MELSEC Series CPU Module (Update D)[/li][li]ICSA-23-157-02 Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update A)[/li][li]ICSA-24-102-09 Rockwell Automation 5015-AENFTXT (Update A)[/li][li]ICSA-24-067-01 Chirp Systems Chirp Access (Update B)[/li][/ul]
CISA encourages users and administrators to review the newly released ICS advisories for technical details and mitigations.