New Critical ICS Vulnerabilities - 20260422001

Overview

CISA has released multiple advisories for Industrial Control Systems (ICS) related vendors.

What is vulnerable?

Critical Severity

Vendor	CVE	CVSS	Severity
Siemens SCALANCE	CVE-2022-36323 CVE-2022-36324 CVE-2022-36325	9.1	Critical

Recommendation

The WASOC recommends administrators review relevant advisories and apply the recommended actions to all affected devices.

• CISA: CISA-Siemens SCALANCE
• Siemens: SSA-710008: Multiple Web Vulnerabilities in SCALANCE Products