CISA Advisories

CISA Advisories General May 28

MacGregor Voyage Data Recorder (VDR) G4e

View CSAF Summary Successful exploitation of these vulnerabilities could result in an attacker gaining administrator access to the device. The following vers...

CISA Advisories →

CISA Advisories Campaigns GitHub May 28

Supply Chain Compromises Impact Nx Console and GitHub Repositories

CISA is prioritizing the response to multiple emerging software supply chain intrusion campaigns targeting developer ecosystems Continuous Integration/Contin...

T1195

CISA Advisories →

CISA Advisories CVE May 27

CISA Adds Three Known Exploited Vulnerabilities to Catalog

CISA has added three new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-8398 Daemon...

3 IOCs

CISA Advisories →

CISA Advisories Vulnerability Disclosure May 26

ABB LVS MConfig

View CSAF Summary ABB became aware of an internally discovered vulnerability in the MConfig product versions listed as affected in the advisory. An attacker ...

T1598 1 IOC

CISA Advisories →

CISA Advisories Advisory May 26

ABB Ability Camera Connect

View CSAF Summary ABB is aware of public reports of vulnerabilities in a 3rd party component VLC media player Version 2.2.

1 IOC

CISA Advisories →

CISA Advisories Vulnerability Disclosure May 26

Eppendorf BioFlo 320

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to gain full access to functionality and data with the bioreactor. Th...

CISA Advisories →

CISA Advisories Vulnerability Disclosure May 26

ABB AbilityTM Zenon Remote Transport Vulnerability

View CSAF Summary ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. The vulnerability enables unauthorized access t...

CISA Advisories →

CISA Advisories Vulnerability Disclosure May 26

ABB B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)

View CSAF Summary An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as affect...

CISA Advisories →

CISA Advisories CVE May 26

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-48172 LiteSpeed...

T1548 1 IOC

CISA Advisories →

CISA Advisories CVE Drupal May 22

CISA Adds One Known Exploited Vulnerability to Catalog

CISA has added one new vulnerability to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2026-9082 Drupal Cor...

1 IOC

CISA Advisories →

CISA Advisories CVE May 21

ABB Terra AC Wallbox

View CSAF Summary ABB is aware of vulnerabilities in the product versions listed as affected in the advisory. An attacker who successfully exploited this vul...

3 IOCs

CISA Advisories →

CISA Advisories CVE May 21

Hitachi Energy GMS600

View CSAF Summary Hitachi Energy is aware of the vulnerability, CVE-2022-4304 in the OSS component OpenSSL, that affects the GMS600 versions that are listed ...

1 IOC

CISA Advisories →

CISA Advisories Vulnerability Disclosure May 21

ABB B&R Automation Studio

View CSAF Summary ABB became aware of vulnerability in the product versions listed as affected in the advisory. An update is available that replaces an outda...

T1190 T1598

CISA Advisories →

CISA Advisories CVE May 21

ABB B&R Automation Runtime

View CSAF Summary An update is available that resolves a vulnerability identified by B&Rs internal security analysis in the product versions listed as affect...

3 IOCs

CISA Advisories →

CISA Advisories CVE Trend Micro May 21

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation. CVE-2025-34291 Langflo...

2 IOCs

CISA Advisories →

CISA Advisories CVE Microsoft Adobe May 20

CISA Adds Seven Known Exploited Vulnerabilities to Catalog

CISA has added seven new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on evidence of active exploitation.

6 IOCs

CISA Advisories →

CISA Advisories Vulnerability Disclosure May 20

Schnieider Electric EcoStruxure Machine Expert HVAC (SEVD-2026-132-01)

View CSAF Summary Schneider Electric is aware of a vulnerability in its EcostruxureTM Machine Expert HVAC product. The [EcostruxureTM Machine Expert HVAC](ht...

2 IOCs

CISA Advisories →

CISA Advisories Vulnerability Disclosure May 19

Kieback & Peter DDC Building Controllers

View CSAF Summary Successful exploitation of this vulnerability could allow an attacker to take control of the victim's browser. The following versions of Ki...

CISA Advisories →

CISA Advisories Vulnerability Disclosure Palo Alto Networks May 19

Siemens RUGGEDCOM APE1808 Devices

View CSAF Summary A buffer overflow vulnerability in the User-ID™ Authentication Portal (aka Captive Portal) service of Palo Alto Networks PAN-OS software al...

CISA Advisories →

CISA Advisories CVE May 19

ABB CoreSense HM and CoreSense M10

View CSAF Summary An update is available that resolves vulnerability in the product versions listed as affected in this advisory. A path traversal vulnerabil...

1 IOC

CISA Advisories →