Summary: On February 18, 2025, CISA escalated cybersecurity alerts regarding critical vulnerabilities in Delta Electronics’ CNCSoft-G2 and Rockwell Automation’s GuardLogix controllers. These advisories highlight serious risks, including remote code execution and denial-of-service attacks across industrial environments, necessitating immediate action from affected organizations. CISA urges prompt patch deployment and network security measures to mitigate these risks.
Affected: Delta Electronics and Rockwell Automation
Keypoints :
- CISA issued advisories ICSA-24-191-01 and ICSA-25-035-02 concerning Delta and Rockwell products.
- Delta CNCSoft-G2 vulnerabilities (CVSS v4 8.4) allow remote exploitation, risking manufacturing processes and data integrity.
- Rockwell GuardLogix controllers (CVSS v4 7.1) face denial-of-service threats, potentially disrupting safety-critical systems in various industries.
- Organizations must implement patches and adhere to recommended security practices to secure their industrial environments.
Source: https://gbhackers.com/cisa-issues-two-new-ics-advisories/