CISA releases advisories on vulnerabilities in industrial control systems

The Cybersecurity and Infrastructure Security Agency (CISA) has issued four advisories concerning vulnerabilities identified in various industrial control systems. The advisories address security weaknesses in Advantech DeviceOn iEdge, Ubia Ubox, ABB FLXeon Controllers, and Hitachi Energy Asset Suite (Update A), highlighting potential impacts related to these systems.

Each advisory includes detailed information about the specific vulnerabilities identified, including associated Common Vulnerabilities and Exposures (CVE) identifiers, affected firmware or software versions, and components impacted. The advisories describe the conditions under which the security flaws may be triggered, such as particular network interactions or authentication requirements, as well as distinctions between vulnerabilities where applicable.

The consequences outlined in the advisories pertain to the potential exploitation of these vulnerabilities, which could affect the integrity, confidentiality, or availability of the industrial control systems involved.

The published advisories specify the status of solutions, including the availability of patches or updates where provided. They also note instances where mitigations or fixes have not yet been made available by the respective vendors.

Users and administrators are advised to consult the advisories directly for comprehensive technical details and recommended mitigation strategies to address the reported vulnerabilities.

IBM Lightpath Digital Realty report infrastructure updates - Week of January 26, 2026

iboss launches SSPM in its Zero Trust SASE platform

Salt Security releases Databricks connector and Netlify collector