Serial number: AV26-151
Date: February 23, 2026
Between February 16 and 22, 2026, CISA published ICS advisories to address vulnerabilities in the following products:
- Delta Electronics ASDA-Soft – version 7.2.0.0 and prior
- EnOcean SmartServer IoT – version 4.60.009 and prior
- GE Vernova Enervista UR Setup – versions prior to 8.7
- Honeywell CCTV Products – version I-HIB2PI-UL 2MP IP 6.1.22.1216
- Honeywell CCTV Products – version SMB NDAA MVO-3 WDR_2MP_32M_PTZ_v2.0
- Honeywell CCTV Products – version PTZ WDR 2MP 32M WDR_2MP_32M_PTZ_v2.0
- Honeywell CCTV Products – version 25M IPC WDR_2MP_32M_PTZ_v2.0
- Jinan USR IOT Technology Limited (PUSR) USR-W610 – version 3.1.1.0 and prior
- Siemens Simcenter Femap and Nastran – versions prior to 2512
- Valmet DNA Engineering Web Tools – version C2022 and prior
- Welker OdorEyes EcoSystem Pulse Bypass System with XL4 Controller – all versions
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates if available.