CISA releases 2 Industrial Control Systems Advisories

Cybersecurity and Infrastructure Security Agency sent this bulletin at 09/08/2022 01:08 PM EDT

Cybersecurity and Infrastructure Security Agency (CISA) - Defend Today, Secure Tomorrow

You are subscribed to Industrial Control Systems (ICS) Cybersecurity Advisories for Cybersecurity and Infrastructure Security Agency. This information has recently been updated, and is now available.

9/8/2022 1:00 PM EDT

ICS-CERT released the following 2 advisories today, September 8, 2022. Click on the links below for more detailed information on these Industrial Control Systems vulnerabilities.

MZ Automation GmbH libIEC61850

This advisory contains mitigations for Buffer Overflow, Access of Resource Using Incompatible Type, NULL Pointer Dereference vulnerabilities in libIEC61850 of IEC61850 implementation software.

PTC Kepware KEPServerEX (Update A)

This updated advisory is a follow-up to the original advisory titled ICSA-22-242-10 PTC Kepware KEPServerEX that was published August 30, 2022, to the ICS webpage at www.cisa.gov/ics. This advisory contains mitigations for Heap-based Buffer Overflow and Stack-based Buffer Overflow vulnerabilities in Kepware KEPServerEX, a connectivity platform.

Having trouble viewing this message? View it as a webpage.

You are subscribed to updates from the Cybersecurity and Infrastructure Security Agency (CISA)
Manage Subscriptions | Privacy Policy | Help

Connect with CISA:
Facebook | Twitter | Instagram | LinkedIn | YouTube