CISA Advisories

CISA Advisories CVE May 5

ABB B&R Automation Runtime

View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that resolves a vulner...

T1598 1 IOC

CISA Advisories →

CISA Advisories CVE May 5

ABB B&R Automation Studio

View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that resolves a vulner...

T1598 1 IOC

CISA Advisories →

CISA Advisories CVE May 5

Hitachi Energy PCM600

View CSAF Summary Hitachi Energy is aware of a vulnerability that affects the Hitachi Energy PCM600 product versions listed in this document. An attacker suc...

1 IOC

CISA Advisories →

CISA Advisories CVE May 5

Johnson Controls CEM AC2000

View CSAF Summary Successful exploitation of this vulnerability could allow a standard user to escalate privileges on the host machine. The following version...

1 IOC

CISA Advisories →

CISA Advisories General Intel May 1

Careful Adoption of Agentic AI Services

CISA, in collaboration with the Australian Signals Directorate’s Australian Cyber Security Centre (ASD’s ACSC) and other international and U.S.

CISA Advisories →

CISA Advisories CVE Linux May 1

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-31431 Linux Ker...

1 IOC

CISA Advisories →

CISA Advisories CVE WordPress Apr 30

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-41940 WebPros c...

1 IOC

CISA Advisories →

CISA Advisories Vulnerability Disclosure Apr 30

ABB Ability Symphony Plus Engineering

View CSAF Summary ABB became aware of vulnerability in the products versions listed as affected in the advisory. The ABB S+ Engineering product versions are ...

T1598

CISA Advisories →

CISA Advisories Vulnerability Disclosure Apr 30

ABB System 800xA, Symphony Plus IEC 61850

View CSAF Summary This vulnerability was privately reported relating to ABB’s implementation of the IEC 61850 communication stack for MMS client applications...

CISA Advisories →

CISA Advisories Vulnerability Disclosure Apr 30

ABB Edgenius Management Portal

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to send a specially crafted message to the system node allowing the a...

T1556 2 IOCs

CISA Advisories →

CISA Advisories Vulnerability Disclosure Microsoft Apr 30

ABB Ability OPTIMAX

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to bypass user authentication on OPTIMAX installations that make use ...

CISA Advisories →

CISA Advisories General Apr 30

ABB AWIN Gateways

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to remotely reboot the device or complete an unauthenticated query...

CISA Advisories →

CISA Advisories Operational Technology Apr 29

Adapting Zero Trust Principles to Operational Technology

Adapting Zero Trust Principles to Operational Technology CISA, in coordination with the Department of War, Department of Energy, Federal Bureau of Investigat...

CISA Advisories →

CISA Advisories Vulnerability Disclosure Apr 28

NSA GRASSMARLIN

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to disclose sensitive information. The following versions of NSA GRAS...

CISA Advisories →

CISA Advisories CVE Microsoft Apr 28

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2024-1708 ConnectW...

2 IOCs

CISA Advisories →

CISA Advisories CVE Apr 24

CISA Adds Four Known Exploited Vulnerabilities to Catalog

CISA has added four new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

T1059 4 IOCs

CISA Advisories →

CISA Advisories CVE Apr 23

Milesight Cameras

View CSAF Summary Successful exploitation of these vulnerabilities could crash the device being accessed or allow remote code execution. The following versio...

T1190 6 IOCs

CISA Advisories →

CISA Advisories Advisory Apr 23

Defending Against China-Nexus Covert Networks of Compromised Devices

Defending against china-nexus covert networks of compromised devices executive summary Defending against China-nexus covert networks of compromised devices E...

CISA Advisories →

CISA Advisories CVE Apr 23

SpiceJet Online Booking System

View CSAF Summary Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information. The following versions of Spice...

2 IOCs

CISA Advisories →

CISA Advisories CVE Apr 23

Yadea T5 Electric Bicycle

View CSAF Summary Successful exploitation of this vulnerability could result in an attacker being able to unlock and start the bicycle, leading to vehicle th...

1 IOC

CISA Advisories →