Schneider Electric Foxboro DCS CS 8.1 Patch Addresses Critical CVE-2026-1286 Vulnerability

Schneider Electric has released a critical security patch for its Foxboro Distributed Control System (DCS) Control Software 8.1, addressing CVE-2026-1286, an untrusted project deserialization...

CISA Warns of Critical Authentication Bypass in Pharos Mosaic Show Controller (CVE-2026-2417)

The Cybersecurity and Infrastructure Security Agency (CISA) has issued a critical advisory about an authentication bypass vulnerability in Pharos Controls' Mosaic Show Controller. Designated...

Schneider Electric PME & EPO CVE-2025-11739: Critical Deserialization Vulnerability Requires Immediate Patching

Schneider Electric has issued a critical security advisory for its EcoStruxure Power Monitoring Expert (PME) and EcoStruxure Power Operation (EPO) software, warning of an unsafe deserialization...

Festo Automation Suite Vulnerabilities Expose Critical CODESYS Flaws in Industrial Systems

Festo's automation software stack contains multiple critical vulnerabilities in its CODESYS implementation that could allow attackers to execute arbitrary code, escalate privileges, and compromise...

Dragos 2026 Report: Control Loop Mapping Emerges as Critical OT Threat

The cybersecurity landscape for industrial control systems has undergone a seismic shift in 2026, with adversaries moving beyond traditional reconnaissance to actively map and understand the...

Festo Security Advisory: Undocumented Remote Functions Threaten Industrial Automation Systems

Festo, a leading global manufacturer of industrial automation and control systems, has issued a critical coordinated security advisory warning that firmware across a significant portion of its...

Critical Schneider Electric Rapsody Vulnerabilities: Patch CVE-2025-13844/13845 Now

Schneider Electric has issued urgent security advisories for critical memory-corruption vulnerabilities in its EcoStruxure Power Build Rapsody software, with researchers warning that successful...