Serial number: AV25-644
Date: October 6, 2025
Between September 29 and October 5, 2025, CISA published ICS advisories to address vulnerabilities in the following products:
- Festo CPX-CEC-C1 – version 2.0.12 and prior
- Festo CPX-CMXX – version 1.2.34 rev.404 and prior
- Festo Controller CECC-S, -LK, -D Family Firmware – all versions
- Festo SBRD-Q/SBOC-Q/SBOI-Q – all versions
- Festo SET CPX-CEC-C1 – version 1.2.34 rev.404 and prior
- HEIDENHAIN Controller TNC 640 NC Software – version 340590 07 SP5
- Hitachi Energy MSM – versions 2.2.10 and prior
- Keysight Ixia Vision Product Family – version 6.3.1
- LG Innotek Camera LND7210 – all versions
- LG Innotek Camera LNV7210R – all versions
- MegaSys Enterprises Telenium Online Web Application – versions prior to 8.4.21
- National Instruments Circuit Design Suite – version v14.3.1 and prior
- OpenPLC_V3 – versions prior to pull request #292
- Raise3D Pro2 Series – all versions
- Rockwell Automation 5094-IF8 – version V2.011
- Rockwell Automation 5094-IY8 – version V2.011
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates if available.