CISA Releases Twenty-Two Industrial Control Systems Advisories

CISA released twenty-two Industrial Control Systems (ICS) advisories on May 15, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

• ICSA-25-135-01 Siemens RUGGEDCOM APE1808 Devices
• ICSA-25-135-02 Siemens INTRALOG WMS
• ICSA-25-135-03 Siemens BACnet ATEC Devices
• ICSA-25-135-04 Siemens Desigo
• ICSA-25-135-05 Siemens SIPROTEC and SICAM
• ICSA-25-135-06 Siemens Teamcenter Visualization
• ICSA-25-135-07 Siemens IPC RS-828A
• ICSA-25-135-08 Siemens VersiCharge AC Series EV Chargers
• ICSA-25-135-09 Siemens User Management Component (UMC)
• ICSA-25-135-10 Siemens OZW Web Servers
• ICSA-25-135-11 Siemens Polarion
• ICSA-25-135-12 Siemens SIMATIC PCS neo
• ICSA-25-135-13 Siemens SIRIUS 3SK2 Safety Relays and 3RK3 Modular Safety Systems
• ICSA-25-135-14 Siemens APOGEE PXC and TALON TC Series
• ICSA-25-135-15 Siemens Mendix OIDC SSOICSA-25-135-16 Siemens MS/TP Point Pickup Module
• ICSA-25-135-16 Siemens MS/TP Point Pickup Module
• ICSA-25-135-17 Siemens RUGGEDCOM ROX II
• ICSA-25-135-18 Siemens SCALANCE LPE9403
• ICSA-25-135-19 ECOVACS DEEBOT Vacuum and Base Station
• ICSA-25-135-20 Schneider Electric EcoStruxure Power Build Rapsody
  
• ICSA-24-135-04 Mitsubishi Electric Multiple FA Engineering Software Products (Update C)
• ICSA-24-200-01 Mitsubishi Electric MELSOFT MaiLab and MELSOFT VIXIO (Update A)

CISA encourages users and administrators to review newly released ICS advisories for technical details and mitigations.

Source link