[Control systems] CISA ICS security advisories (AV25–260)

Serial number: AV25-260
Date: May 12, 2025

Between May 5 and 11, 2025, CISA published ICS advisories to address vulnerabilities in the following products:

  • BrightSign OS Series 4 players – versions prior to v8.5.53.1
  • BrightSign OS Series 5 players – versions prior to v9.0.166
  • Hitachi Energy RTU500 Series – multiple versions
  • Horner Automation Cscape – version 10.0 (10.0.415.2) SP1
  • Milesight UG65-868M-EA – firmware versions prior to 60.0.0.46
  • Mitsubishi Electric CC-Link IE TSN – multiple models and versions
  • Optigo Networks ONS NC600 – versions 4.2.1-084 to 4.7.2-330
  • Pixmeo OsiriX MD – versions 14.0.1 (Build 2024-02-28) and prior

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates if available.

Date modified: