Industrial Cybersecurity
The latest Industrial Cybersecurity coverage — news, analysis, and updates from the WindowsNews.AI desk.
ABB Automation Builder Gateway Vulnerability Exposes PLC Discovery on TCP Port 1217
CISA has republished ABB’s advisory for CVE-2024-41975, spotlighting a dangerous default configuration in the ABB Automation Builder Gateway for Windows. Before version 2.9.0, the software listens...
CVE-2026-0936: ABB PVI credential leak risks OT network takeover
On May 5, 2026, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) republished an advisory from ABB detailing a medium-severity information-disclosure vulnerability in the company’s...
ABB Warns: Critical PostgreSQL Bugs in Symphony Plus S+ Engineering
CISA republished an ABB advisory on April 30, 2026, flagging four PostgreSQL vulnerabilities lurking inside ABB Ability Symphony Plus S+ Engineering. The industrial control system (ICS) software,...
CISA Issues Urgent Upgrade Advisory for ABB Symphony Plus S+ Engineering After Four Critical PostgreSQL Vulnerabilities
The Cybersecurity and Infrastructure Security Agency (CISA) is warning industrial organizations to immediately upgrade ABB Ability Symphony Plus S+ Engineering software, following the disclosure of...
CISA Zero Trust Mandate Hits the Plant Floor: What Windows Admins Must Secure Now
The Cybersecurity and Infrastructure Security Agency has released joint guidance—backed by the Departments of Defense, Energy, State, and the FBI—ordering industrial operators to adapt zero trust...
Siemens RUGGEDCOM CROSSBOW SAC Vulnerability CVE-2025-6965: Critical Patch Required for Industrial Networks
Siemens has issued a critical security advisory for its RUGGEDCOM CROSSBOW Station Access Controller (SAC) product, warning of a vulnerability that could allow attackers to execute arbitrary code on...
Siemens RUGGEDCOM CROSSBOW CVE-2025-6965: Critical Code Execution Vulnerability Patched in V5.8
Siemens has issued a critical security advisory for its RUGGEDCOM CROSSBOW Station Access Controller (SAC) software, warning of a severe vulnerability that could allow remote attackers to execute...
Siemens SINEC NMS flaw CVE-2024-31468 grants admin access without login; update to V4.0 SP3 Update 1.
Siemens has disclosed a critical authentication bypass vulnerability in its SINEC NMS (Network Management System) that allows attackers to gain administrative access without credentials. The...
Siemens SCALANCE W-700 Security Advisory: Critical Vulnerabilities Require Immediate Firmware Update to 6.6.0
Siemens has issued a critical security advisory for its SCALANCE W-700 IEEE 802.11n wireless access point family, warning that multiple vulnerabilities affect devices running firmware versions prior...
CISA Warns of 11 Critical Vulnerabilities in SenseLive X3050 V1.523 Industrial Device
The Cybersecurity and Infrastructure Security Agency has issued an urgent advisory for the SenseLive X3050 industrial device, identifying 11 critical vulnerabilities in version V1.523 that could...
Siemens TPM 2.0 Vulnerability CVE-2025-2884: Critical Firmware Patch Required for Industrial Systems
Siemens has issued a critical security advisory for a TPM 2.0 vulnerability affecting multiple industrial automation systems, requiring immediate firmware updates and operational technology...
Update RUGGEDCOM CROSSBOW SAM-P to V5.8.0 to Fix CVE-2026-27668 Privilege Escalation
Siemens has issued a critical industrial cybersecurity warning for RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) systems. The vulnerability, designated CVE-2026-27668, allows authenticated...