Serial number: AV25–497
Date: August 11, 2025
Between August 4 and 10, 2025, CISA published ICS advisories to address vulnerabilities in the following products:
- Burk Technology ARC Solo – versions prior to v1.0.62
- Delta Electronics DIAView – versions 4.2.0.0
- Dreame Technology Dreamehome Android app – versions 2.1.8.8 and prior
- Dreame Technology Dreamehome iOS app – versions 2.3.4 and prior
- Dreame Technology MOVAhome iOS app – versions 1.2.3 and prior
- EG4 Electronics EG4 Inverters – multiple models and versions
- Johnson Controls FX80, FX90 – versions FX 14.10.10 and FX 14.14.1
- Mitsubishi Electric GENESIS – version 11.00
- Mitsubishi Electric GENESIS64 – all versions
- Mitsubishi Electric MC Works64 – all versions
- Packet Power EG and EMX – versions prior to 4.1.0
- Rockwell Automation Arena – version 16.20.09 and prior
- Tigo Energy Cloud Connect Advanced – version 4.0.1 and prior
- Yealink IP Phonesv – multiple versions and models
- Yealink RPS (Redirect and Provisioning Service) – all builds prior to 05-26-2025
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates if available.