CISA Releases Seven Industrial Control Systems Advisories

All CISA Advisories

November 25, 2025 at 12:00 PM

Summary

CISA has released seven advisories addressing security vulnerabilities in various Industrial Control Systems (ICS). These advisories highlight the need for users and administrators to review the technical details and implement mitigations to protect against potential exploits.

Original Article Summary

CISA released seven Industrial Control Systems (ICS) Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-329-01 Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share ICSA-25-329-02 Rockwell Automation Arena Simulation ICSA-25-329-03 Zenitel TCIV-3+ ICSA-25-329-04 Opto 22 groov View ICSA-25-329-05 Festo Compact Vision System, Control Block, Controller, and Operator Unit products ICSA-25-329-06 SiRcom SMART Alert (SiSA) ICSA-22-333-05 Mitsubishi Electric FA Engineering Software (Update C) CISA encourages users and administrators to review newly released ICS Advisories for technical details and mitigations.

Impact

Ashlar-Vellum Cobalt, Xenon, Argon, Lithium; Rockwell Automation Arena Simulation; Zenitel TCIV-3+; Opto 22 groov View; Festo Compact Vision System, Control Block, Controller, and Operator Unit products; SiRcom SMART Alert (SiSA); Mitsubishi Electric FA Engineering Software (Update C)

In the Wild

Unknown

Timeline

Newly disclosed

Remediation

CISA encourages users and administrators to review newly released ICS Advisories for technical details and mitigations.

Read Original Article

Related Coverage

Week in review: React, Node.js flaw patched, ransomware intrusion exposes espionage foothold

Help Net Security

The article highlights recent developments in cybersecurity, including a patched flaw in React and Node.js, as well as a ransomware intrusion that has revealed an espionage foothold. These incidents underscore the ongoing challenges in securing software frameworks and the risks posed by cyber threats to sensitive information.

Dec 7, 2025

Attackers launch dual campaign on GlobalProtect portals and SonicWall APIs

Security Affairs

A hacking campaign has been targeting GlobalProtect logins and scanning SonicWall APIs since December 2, 2025. The attack is significant due to its scale, involving over 7,000 IP addresses linked to a German hosting provider, indicating a coordinated effort that poses a serious threat to the security of affected systems.

Dec 6, 2025

Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

The Hacker News

Over 30 security vulnerabilities have been identified in AI-powered Integrated Development Environments (IDEs), collectively termed IDEsaster. These vulnerabilities combine prompt injection techniques with legitimate features, allowing for potential data exfiltration and remote code execution, posing significant risks to developers and organizations using these tools.

Dec 6, 2025

Your smart home is at risk - 6 ways to protect your devices from attack

Attackers hit React defect as researchers quibble over proof

CyberScoop

The article discusses a React vulnerability that has been reportedly exploited by attackers, leading to a debate among researchers about the existence of concrete evidence for these attacks. While some researchers claim to have seen proof of concepts demonstrating the exploit, others argue that there is insufficient evidence of actual attacks occurring, complicating the response efforts.

Dec 5, 2025

Barts Health NHS discloses data breach after Oracle zero-day hack

BleepingComputer

Barts Health NHS Trust has reported a data breach involving the Clop ransomware group, which exploited a vulnerability in the Oracle E-business Suite software to steal files from their database. This incident highlights the ongoing risks associated with unpatched software vulnerabilities and the potential for significant data loss in healthcare organizations.

Dec 5, 2025