Serial number: AV25-854
Date: December 22, 2025
Between December 15 and 21, 2025, CISA published ICS advisories to address vulnerabilities in the following products:
- Advantech – WebAccess/SCADA
- Axis Communications – Camera Station Device Manager
- Axis Communications – Camera Station Pro
- Axis Communications – Camera Station Station
- Güralp Systems – Fortimus Series, Minimus Series, and Certimus Series
- Hitachi Energy – AFS, AFR and AFF Series
- Inductive Automation Ignition – Ignition
- Johnson Controls – PowerG, IQPanel and IQHub
- Mitsubishi Electric – GT Designer3
- Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics – GENESIS64
- Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics – ICONICS Suite
- Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics – MobileHMI
- Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics – MC Works64
- National Instruments – LabVIEW
- Rockwell Automation – Micro820
- Rockwell Automation – Micro850
- Rockwell Automation – Micro870
- Schneider Electric – EcoStruxure Foxboro DCS Advisor
- Siemens Interniche IP-Stack:SIDOOR – multiple models and versions
- Siemens Interniche IP-Stack:SIMATIC – multiple models and versions
- Siemens Interniche IP-Stack:SIMOCODE – multiple models and versions
- Siemens Interniche IP-Stack:SINUMERIK – multiple models and versions
- Siemens Interniche IP-Stack:SIPLUS – multiple models and versions
- Siemens Interniche IP-Stack:SIWARX – multiple models and versions
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates if available.