2 Advisories Published – 2-1-24

Feb 01, 2024

∙ Paid

Today, CISA’s NCCIC-ICS published two control system security advisories for products from AVEVA and Gessler. I also look at another ‘missing advisory’.

AVEVA Advisory

This advisory describes an uncontrolled search path element vulnerability in the AVEVA Edge products (formerly known as InduSoft Web Studio). The vulnerability was reported separately by Ti…

Keep reading with a 7-day free trial

Subscribe to CFSN Detailed Analysis to keep reading this post and get 7 days of free access to the full post archives.