SIEMENS has published 18 new security advisories, with several describing critical vulnerabilities across products such as Sentron 7KT PAC1261 Data Manager, Simatic S7 PLC web server, Ruggedcom Rox, ROS#, Simatic CN4100, and Opcenter RDnL. The company also notes that its Ruggedcom APE1808 is affected by a recently disclosed PAN-OS vulnerability that has been exploited in the wild, possibly by Chinese state‑sponsored hackers.
High‑severity vulnerabilities that allow remote code execution have been resolved in Simcenter Femap, Teamcenter, gPROMS Web Applications Publisher, and Ruggedcom Rox, while a high‑severity flaw in KACO Blueplanet inverters can lead to information disclosure and a separate control panel escape issue affects Simatic HMI Unified Comfort.
Schneider Electric has published four new advisories, addressing high‑severity issues in EcoStruxure Panel Server, EasyLogic T150 and Saitel DP RTU, and EasyLogic, PowerLogic, Easergy and EcoStruxure products (session hijacking), with a medium‑severity information disclosure fix in Ecostruxure Machine Expert HVAC.
According to CISA, advisories were also issued for vulnerabilities in ABB products over the past fortnight, and on Patch Tuesday it released advisories for holes in Subnet Solutions, Fuji Electric, Maxhub and Johnson Controls; CERT@VDE published a medium‑severity DoS flaw in Codesys Modbus. Written by Eduard Kovacs, this SecurityWeek report is dated 13 May 2026 in the UK format.