Page 1 of 10

This past week, 8 - 12 January

2024, Nine new CISA ICS

Advisory were released for

four vendors on the 11th of

January 2024.

List of Vendors and HQ

locations:

ICS Advisory Project identified two

new and seven updated advisories

from other CERTs and Vendors for the

following vendors: AMD, Bosch

Rexroth AG, Panasonic, and Schneider

Electric. See ICS[AP] Weekly Summary

CISA, CERTS, and Other Advisories for

8 - 12 January 2024 for more details

on these advisories.

Vendor HQ

Location

Horner Automation United States

Rapid Software LLC United States

Schneider Electric France

Siemens Germany

c 2024 ICS Advisory Project

Page 2 of 10

The CISA Advisories released on the 11th of

January 2024 have vulnerabilities ranging

from Critical to High severity. Rapid

Software LLC and Siemens products have

vulnerabilities with Critical severity.

Siemens products have vulnerabilities with

High and Medium severity.

Summary of CVSS severity by Vendor/Product:

Vendor/Product CVSS

Severity

Rapid Software LLC Rapid SCADA Critical

Siemens SIMATIC CN 4100 Critical

Siemens SIMATIC Critical

Schneider Electric Easergy Studio High

Horner Automation Cscape High

Siemens Spectrum Power 7 High

Siemens Solid Edge High

Siemens Teamcenter Visualization and

JT2Go High

Siemens SICAM A8000 Medium

c 2024 ICS Advisory Project

Page 3 of 10

c 2024 ICS Advisory Project

One updated CISA ICS Advisory was

released for Cambium Networks this

past week (8 – 12 January 2024).

List of CISA ICS Advisory Updates:

The following were updated in the Cambium ePMP

5GHz Force 300-25 Radio (Update A)- ICSA-23-348-

01:

Update A: Removed references to 'remote' code

execution as the exploit occurs on a local device.

CISA ICS Advisory Updates

Cambium ePMP 5GHz Force 300-25

Radio (Update A)