CISA Publishes 20 Advisories on ICS Security Flaws and Exploits

 The Cybersecurity and Infrastructure Security Agency (CISA) has issued 20 security advisories on February 13, 2025, warning about critical vulnerabilities in Industrial Control Systems (ICS) and medical devices.

These disclosures are part of ongoing efforts to address the growing risks posed by cyber threats targeting critical infrastructure and operational technology (OT).

The advisories span vulnerabilities in products from multiple manufacturers, including Siemens, Mitsubishi Electric, ORing, and others.

Each advisory provides technical details, potential risks, and recommended mitigations to protect systems from exploitation.

Organizations operating in energy, manufacturing, transportation, healthcare, and other critical sectors are advised to act swiftly.

Overview of the 20 Advisories

Siemens ICS Vulnerabilities

1. ICSA-25-044-01: Siemens SIMATIC S7-1200 CPU Family
   Vulnerabilities in these widely deployed PLCs could allow attackers to impact industrial automation systems.
2. ICSA-25-044-02: Siemens SIMATIC
   Flaws in SIMATIC environments could enable unauthorized access or disruption of operational processes.
3. ICSA-25-044-03: Siemens SIPROTEC 5
   Exploitable flaws in SIPROTEC 5 protection relays could compromise energy sector reliability.
4. ICSA-25-044-04: Siemens SIPROTEC 5
   Another advisory addressing additional vulnerabilities in the same devices, emphasizing the need for updates.
5. ICSA-25-044-05: Siemens SIPROTEC 5 Devices
   Highlights further potential exploits affecting protection relays critical for energy system integrity.
6. ICSA-25-044-06: Siemens RUGGEDCOM APE1808 Devices
   Security flaws in industrial networking devices could allow unauthorized access or denial of service attacks.
7. ICSA-25-044-07: Siemens Teamcenter
   Exploitable vulnerabilities in Teamcenter engineering software could expose sensitive data and intellectual property.
8. ICSA-25-044-08: Siemens OpenV2G
   A vulnerability in Siemens’ OpenV2G electric vehicle infrastructure risks unauthorized system access.
9. ICSA-25-044-09: Siemens SCALANCE W700
   Wireless networking vulnerabilities could allow attackers to disrupt industrial communications.
10. ICSA-25-044-10: Siemens Questa and ModelSim
    Exploits could interfere with the development and simulation environments used in design engineering.
11. ICSA-25-044-11: Siemens APOGEE PXC and TALON TC Series
    Vulnerabilities affecting building automation systems critical for climate control and energy efficiency.
12. ICSA-25-044-12: Siemens SIMATIC IPC DiagBase and SIMATIC IPC DiagMonitor
    Exploitable flaws in industrial PC diagnostic tools used in manufacturing.
13. ICSA-25-044-13: Siemens SIMATIC PCS neo and TIA Administrator
    Vulnerabilities in these critical automation platforms could disrupt industrial operations.
14. ICSA-25-044-14: Siemens Opcenter Intelligence
    Potential exploits in process optimization software could lead to data breaches and operational disruptions.

Other Critical Vulnerabilities

15. ICSA-25-044-15: ORing IAP-420
    Networking device flaws could allow attackers to access ICS environments without authorization.
16. ICSA-25-044-16: mySCADA myPRO Manager
    Vulnerabilities in mySCADA software could expose ICS monitoring and control systems to attacks.
17. ICSA-25-044-17: Outback Power Mojave Inverter
    Exploitable flaws in power management systems may lead to disruptions in renewable energy operations.
18. ICSA-25-044-18: Dingtian DT-R0 Series
    Security issues in these devices could compromise network infrastructure in critical environments.
19. ICSA-24-030-02: Mitsubishi Electric FA Engineering Software Products (Update C)
    A third update to address recurring vulnerabilities in Mitsubishi Electric’s industrial software.
20. ICSMA-25-044-01: Qardio Heart Health iOS and Android Application and QardioARM A100
    Cybersecurity flaws in this medical device system could jeopardize patient data and health monitoring reliability.

These 20 advisories reinforce the urgent need for robust defenses in ICS and critical infrastructure sectors.

As cyber threats targeting OT environments grow more sophisticated, coordinated efforts are essential to protect sensitive systems and ensure operational resilience.

 CISA remains committed to providing actionable intelligence to mitigate emerging risks.

Investigate Real-World Malicious Links & Phishing Attacks With Threat Intelligence Lookup - Try for Free