ICS-CERT Releases Three Industrial Control System Advisories

Summary:

CISA's ICS-CERT advisory provides more detailed information on these three Industrial Control Systems vulnerabilities in separate links below.

Additional Discussion:

GE Digital Proficy CIMPLICITY-IPM This advisory contains mitigations for an Improper Privilege Management vulnerability in GE Proficy CIMPLICITY, an HMI and SCADA platform.

GE Digital Proficy CIMPLICITY-Cleartext This advisory contains mitigations for a Cleartext Transmission of Sensitive Information vulnerability in GE Proficy CIMPLICITY, an HMI and SCADA platform.

WIN-911 2021 This advisory contains mitigations for Incorrect Default Permissions vulnerabilities in the WIN-911 2021 alarm notification platforms.