CISA releases seven advisories on industrial control systems vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) has issued seven advisories concerning multiple Industrial Control Systems (ICS) products, detailing vulnerabilities that present diverse security concerns across different platforms.

The advisories reference several specific products: Ashlar-Vellum's Cobalt, Xenon, Argon, Lithium, and Cobalt Share; Rockwell Automation Arena Simulation; Zenitel TCIV-3+; Opto 22 groov View; Festo's Compact Vision System along with its Control Block, Controller, and Operator Unit products; SiRcom SMART Alert (SiSA); and Mitsubishi Electric's FA Engineering Software (Update C). The advisories provide explicit information on affected components, vulnerability identifiers, and applicable software or firmware versions where available.

The identified vulnerabilities impact functions within these ICS products and can lead to potential security risks detailed in each advisory. Specific consequences vary per vulnerability as outlined in the respective reports.

CISA's advisories include information about available patches or fixes where applicable, and also note when mitigations are under development or unavailable.

The agency recommends that system operators and administrators closely examine these advisories to obtain detailed technical data and apply any applicable mitigations to address the reported issues.

iboss launches SSPM in its Zero Trust SASE platform

Salt Security releases Databricks connector and Netlify collector

Darling Ingredients selects Cato Networks for SASE