[Control systems] STEP Tools security advisory (AV23-137)

Serial number: AV23-137
Date: March 9, 2023

On March 9, 2023, CISA published an ICS Advisory to address a vulnerability VulnerabilityA flaw or weakness in the design or implementation of an information system or its environment that could be exploited to adversely affect an organization's assets or operations. in the following product:

• STEPTools (ifcmesh library) – version 18.1

Exploitation of this vulnerability could lead to a denial of service.

The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates, when available.

• ICS Advisory (ICSA-23-068-04)
• ICS Advisories