New ICS Critical Vulnerabilities - 20250725001

Overview

CISA has released Industrial Control System (ICS) advisories around current security issues, vulnerabilities and exploits in ICS's.

What is vulnerable?

Vendor	CVE #	CVSS	Severity
Honeywell	CVE-2025-2523	9.4	Critical

Recommendation

The WA SOC recommends administrators apply the solutions as per vendor instructions to all affected devices within expected timeframes (refer Patch Management):

• CISA: https://www.cisa.gov/news-events/alerts/2025/07/24/cisa-releases-six-industrial-control-systems-advisories