CISA ICS Advisories, Additional Alerts, Updates, and Bulletins – January 16, 2025

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS security advisories, along with additional alerts, updates, and bulletins:

ICS Advisories:

• On January 16, 2025, CISA Released Twelve Industrial Control Systems Advisories for products used across multiple sectors, please check these latest advisories for specific equipment used across your ICS/SCADA environments and address accordingly:
  • Siemens Mendix LDAP – Used in Energy
  • Siemens Industrial Edge Management – Used in Energy
  • Siemens Siveillance Video Camera
  • Siemens SIPROTEC 5 Products
  • Fuji Electric Alpha5 SMART
  • Hitachi Energy FOX61x, FOXCST, and FOXMAN-UN Products
  • Hitachi Energy FOX61x Products
  • Schneider Electric Data Center Expert
  • Mitsubishi Electric Multiple Factory Automation Products (Update A)
  • Delta Electronics DRASimuCAD (Update A) 
  • Johnson Controls Inc. Software House C●CURE 9000 (Update A) – Used in Energy
  • Mitsubishi Electric FA Engineering Software Products (Update B)

Additional Alerts, Updates, and Bulletins

• 01/14/2025: CISA Adds Four Known Exploited Vulnerabilities to Catalog
• CISA Releases Microsoft Expanded Cloud Logs Implementation Playbook
• Adobe Releases Security Updates for Multiple Products
• Microsoft Releases January 2025 Security Updates