CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins – November 21, 2023

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

CISA Releases Five Industrial Control Systems Advisories

Products are used across multiple sectors, please check these latest advisories for specific equipment used across your ICS environments and address accordingly.

• WAGO PFC200 Series
• Fuji Electric Tellus Lite V-Simulator
• Mitsubishi Electric CNC Series (Update C)
• Keysight N8844A Data Analytics Web Service (Update A) 
• Rockwell Automation Stratix 5800 and Stratix 5200 (Update A)

Alerts, Updates, and Bulletins:

• CISA, FBI, MS-ISAC, and ASD ACSC Release Advisory on LockBit 3.0 Ransomware Affiliates Exploiting CVE 2023-4966 Citrix Bleed Vulnerability
• UPDATE to CISA and FBI Advisory on Scattered Spider
• CISA Adds One Known Exploited Vulnerability to Catalog
• Juniper Releases Security Advisory for Juniper Secure Analytics