Cisa Advisory
The latest Cisa Advisory coverage — news, analysis, and updates from the WindowsNews.AI desk.
ABB PCM600 Zip Slip Flaw: Upgrade to v2.14 or Risk OT System Compromise
CISA has republished a critical advisory for ABB’s PCM600 software, flagging a five-year-old path traversal vulnerability that still threatens operational technology environments. The advisory,...
CISA Warns: ABB Gateway Bugs Expose Credentials, Enable Remote Reboot
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) republished a critical advisory from ABB on April 30, 2026, warning that three vulnerabilities in the company’s AWIN GW100 rev.2 and...
CISA Warns SpiceJet Booking Flaws Let Attackers Steal Passenger PNR Data
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory regarding two security vulnerabilities in the SpiceJet Online Booking System. Tracked as CVE-2026-6375...
CISA Warns: Multiple Milesight Camera Flaws Enable RCE and DoS Attacks
A new CISA advisory has placed Milesight surveillance cameras squarely in the crosshairs of enterprise security teams. The advisory bundles five distinct CVE families affecting multiple camera...
CISA Warns of Yadea T5 E-Bike Vulnerability CVE-2025-70994 Allowing Key-Fob Signal Forging
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has published an Industrial Control Systems (ICS) advisory detailing a critical vulnerability in Yadea's T5 electric bicycle. Tracked...
CVE-2025-65856: Unauthenticated Admin Access via ONVIF in Xiongmai XM530 Cameras
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent advisory regarding a critical authentication-bypass vulnerability in Hangzhou Xiongmai Technology Co., Ltd XM530...
CISA Warns of Critical 9.4-Rated Auth Bypass in Carlson VASCO-B GNSS Receiver
Critical infrastructure operators are being urged to patch Carlson Software’s VASCO-B GNSS Receiver after CISA published a new ICS advisory describing a high-severity authentication flaw that could...
CISA, FBI Warn China Hackers Use SOHO Routers, IoT for Covert Proxy Networks
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released a joint advisory detailing how China-nexus threat actors are systematically compromising small office/home office (SOHO)...
Zero Motorcycles Bluetooth Vulnerability Exposes Critical Firmware Flaw (CVE-2026-1354)
Zero Motorcycles has disclosed a critical Bluetooth vulnerability that could allow attackers to push malicious firmware updates to electric motorcycles. The flaw, tracked as CVE-2026-1354, affects...
CISA Warns of 11 Critical Vulnerabilities in SenseLive X3050 V1.523 Industrial Device
The Cybersecurity and Infrastructure Security Agency has issued an urgent advisory for the SenseLive X3050 industrial device, identifying 11 critical vulnerabilities in version V1.523 that could...
Silex SD-330AC & AMC Manager Vulnerabilities: CISA Warns of Critical RCE, XSS, and Auth Bypass Flaws
The Cybersecurity and Infrastructure Security Agency has issued an urgent advisory about multiple critical vulnerabilities in Silex Technology's SD-330AC wireless access point and AMC Manager device...
CISA: Patch Silex SD-330AC and AMC Manager Now – 9.8-Rated RCE, DoS Risks
The Cybersecurity and Infrastructure Security Agency (CISA) issued an industrial control systems advisory on April 21, 2026, detailing multiple critical vulnerabilities in Silex Technology's SD-330AC...