CISA releases 2 Industrial Control Systems Advisories

Cybersecurity and Infrastructure Security Agency sent this bulletin at 08/04/2022 12:18 PM EDT

Cybersecurity and Infrastructure Security Agency (CISA) - Defend Today, Secure Tomorrow

You are subscribed to Industrial Control Systems (ICS) Cybersecurity Advisories for Cybersecurity and Infrastructure Security Agency. This information has recently been updated, and is now available.

8/4/2022 12:15 PM EDT

ICS-CERT released the following 2 advisories today, August 4, 2022. Click on the links below for more detailed information on these Industrial Control Systems vulnerabilities.

Digi ConnectPort X2D

This advisory contains mitigations for an Execution with Unnecessary Privileges vulnerability in Digi ConnectPort X2D, a connection gateway.

Inductive Automation Ignition (Update A)

This updated advisory is a follow-up to the advisory update titled ICSA-22-207-01 Inductive Automation Ignition that was published July 26, 2022, to the ICS webpage at www.cisa.gov/ics. This advisory contains mitigations for an Improper Restriction of XML External Entity Reference vulnerability in versions of Inductive Automation Ignition software.

Having trouble viewing this message? View it as a webpage.

You are subscribed to updates from the Cybersecurity and Infrastructure Security Agency (CISA)
Manage Subscriptions | Privacy Policy | Help

Connect with CISA:
Facebook | Twitter | Instagram | LinkedIn | YouTube