THE latest ICS Patch Tuesday advisories have been released by Siemens, Schneider Electric, and Phoenix Contact. Siemens issued four advisories, addressing vulnerabilities including command execution, information disclosure, privilege escalation, and a CVE affecting OpenSSL. Schneider Electric published three advisories regarding DoS and command execution vulnerabilities, as well as credential exposure issues. Phoenix Contact reported an unauthenticated log download vulnerability.
Additionally, CISA and VDE CERT provided advisories on previously disclosed security flaws. Rockwell Automation announced enhancements to its SecureOT solution suite without issuing new advisories. ABB and Mitsubishi Electric have also released advisories recently.