CISA released twenty-two Industrial Control Systems (ICS) advisories on May 15, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.
- ICSA-25-135-01 Siemens RUGGEDCOM APE1808 Devices
- ICSA-25-135-02 Siemens INTRALOG WMS
- ICSA-25-135-03 Siemens BACnet ATEC Devices
- ICSA-25-135-04 Siemens Desigo
- ICSA-25-135-05 Siemens SIPROTEC and SICAM
- ICSA-25-135-06 Siemens Teamcenter Visualization
- ICSA-25-135-07 Siemens IPC RS-828A
- ICSA-25-135-08 Siemens VersiCharge AC Series EV Chargers
- ICSA-25-135-09 Siemens User Management Component (UMC)
- ICSA-25-135-10 Siemens OZW Web Servers
- ICSA-25-135-11 Siemens Polarion
- ICSA-25-135-12 Siemens SIMATIC PCS neo
- ICSA-25-135-13 Siemens SIRIUS 3SK2 Safety Relays and 3RK3 Modular Safety Systems
- ICSA-25-135-14 Siemens APOGEE PXC and TALON TC Series
- ICSA-25-135-15 Siemens Mendix OIDC SSOICSA-25-135-16 Siemens MS/TP Point Pickup Module
- ICSA-25-135-16 Siemens MS/TP Point Pickup Module
- ICSA-25-135-17 Siemens RUGGEDCOM ROX II
- ICSA-25-135-18 Siemens SCALANCE LPE9403
- ICSA-25-135-19 ECOVACS DEEBOT Vacuum and Base Station
- ICSA-25-135-20 Schneider Electric EcoStruxure Power Build Rapsody
- ICSA-24-135-04 Mitsubishi Electric Multiple FA Engineering Software Products (Update C)
- ICSA-24-200-01 Mitsubishi Electric MELSOFT MaiLab and MELSOFT VIXIO (Update A)
CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.