CISA releases six advisories on industrial control systems vulnerabilities

The Cybersecurity and Infrastructure Security Agency issued six advisories covering vulnerabilities and exploits found in various Industrial Control Systems products, including Automated Logic WebCTRL Premium Server, ICAM365 CCTV cameras, Opto 22 GRV-EPIC and GRV-RIO, Festo MSE6-C2M/D2M/E2M and Didactic products, and Emerson Appleton UPSMON-PRO.

These advisories detail specific technical information such as affected models and versions related to each product. Each advisory identifies the particular components or functions exposed to risk and outlines the conditions under which exploitation can occur. Differences in vulnerability characteristics across the six product groups are described individually.

The consequences of these vulnerabilities encompass unauthorized access, data exposure, or potential disruption of normal operations within the affected systems, as specified for each advisory.

Fixes or mitigation methods have been addressed within each advisory according to the vendors' provided information; users are advised to consult the advisories directly for precise details on solutions available.

The agency recommends that system administrators and users examine the new advisories to obtain detailed technical guidance and implement appropriate measures to manage identified risks within their Industrial Control Systems environments.

IBM Lightpath Digital Realty report infrastructure updates - Week of January 26, 2026

iboss launches SSPM in its Zero Trust SASE platform

Salt Security releases Databricks connector and Netlify collector