Serial number: AV25-793
Date: December 1, 2025
Between November 24 and 30, 2025, CISA published ICS advisories to address vulnerabilities in the following products:
- Ashlar-Vellum Argon – versions 12.6.1204.207 and prior
- Ashlar-Vellum Cobalt Share – versions 12.6.1204.207 and prior
- Ashlar-Vellum Cobalt – versions 12.6.1204.207 and prior
- Ashlar-Vellum Lithium – versions 12.6.1204.207 and prior
- Ashlar-Vellum Xenon – versions 12.6.1204.207 and prior
- Festo Software Compact Vision System SBO-Q – all versions
- Festo Software Control block – multiple versions and models
- Festo Software Controller – multiple versions and models
- Festo Software Operator unit – multiple versions and models
- Opto 22 GRV-EPIC-PR1 Firmware – versions prior to 4.0.3
- Opto 22 GRV-EPIC-PR2 Firmware – versions prior to 4.0.3
- Opto 22 groov View Server for Windows – versions R1.0a to R4.5d
- Rockwell Automation Arena Simulation – version 16.20.10 and prior
- SiRcom SMART Alert (SiSA) – version 3.0.48
- Zenitel TCIV-3+ - versions prior to 9.3.3.0
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates if available.