Critical ICS Vulnerabilities - 20250625001

Overview

CISA has released multiple critical advisories for Industrial Control Systems (ICS) related vendors.

What is vulnerable?

Vendor	CVE #	CVSS	Severity
Kaleris	CVE-2025-2566	9.3	Critical
ControlID	CVE-2025-49853	9.3	Critical
MICROSENS	CVE-2025-49151	9.3	Critical

Recommendation

The WA SOC recommends administrators review relevant advisories and apply the recommended actions to all affected devices.

• CISA: https://www.cisa.gov/news-events/alerts/2025/06/24/cisa-releases-eight-industrial-control-systems-advisories