CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – April 25, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

• Keysight N8844A Data Analytics Web Service
• Scada-LTS Third Party Component – Product used in the Energy Sector

Alerts, Updates, and Bulletins:

• Abuse of the Service Location Protocol May Lead to DoS Attacks
• CISA Adds Three Known Exploited Vulnerabilities to Catalog
• VMware Releases Security Update for Aria Operations for Logs
• Cisco Releases Security Advisories for Multiple Products
• Oracle Releases Security Updates
• Drupal Releases Security Advisory to Address Vulnerability in Drupal Core
• CISA Releases Two SBOM Documents