Multiple Vendor Security Advisories for Critical Vulnerabilities
Several major technology vendors, including Automated Logic, Emerson, Festo, ICAM365, METZ CONNECT, Opto 22, Schneider Electric, Shelly, Ubuntu, Dell, and IBM, have published security advisories addressing critical vulnerabilities in their products. The Canadian Centre for Cyber Security has highlighted these advisories, urging users and administrators to review the details and apply necessary mitigations and updates. Affected products span industrial control systems, Linux distributions, enterprise storage, backup solutions, and various hardware and software platforms, underscoring the broad impact of these vulnerabilities across sectors.
The advisories cover a range of issues, from multiple vulnerabilities in industrial automation and SCADA systems to kernel-level flaws in all supported Ubuntu LTS and current releases, as well as security weaknesses in Dell's storage and recovery solutions and unspecified IBM products. Organizations are strongly encouraged to consult the official advisories for each vendor and implement recommended patches and mitigations to reduce the risk of exploitation and maintain operational security.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
5 events from the most recent confirmed update back to the earliest known activity.
Canadian Centre for Cyber Security posts Ubuntu security advisory AV25-781
On November 24, 2025, the Canadian Centre for Cyber Security published Ubuntu security advisory AV25-781. No synopsis was provided in the reference content.
Canadian Centre for Cyber Security posts Dell security advisory AV25-779
On November 24, 2025, the Canadian Centre for Cyber Security published Dell security advisory AV25-779. No synopsis was provided in the reference content.
Canadian Centre for Cyber Security posts IBM security advisory AV25-780
On November 24, 2025, the Canadian Centre for Cyber Security published IBM security advisory AV25-780. No synopsis was provided in the reference content.
Canadian Centre for Cyber Security republishes CISA ICS advisory roundup
On November 24, 2025, the Canadian Centre for Cyber Security published alert AV25-782 summarizing the CISA ICS advisories released during the prior week and urging organizations to review the notices and apply mitigations. The alert highlighted affected building automation, UPS monitoring, industrial control, camera, and power monitoring products.
CISA publishes multiple ICS security advisories for industrial and IoT products
Between November 17 and 23, 2025, CISA issued multiple ICS advisories covering vulnerabilities in products from Automated Logic, Emerson, Festo, ICAM365, METZ CONNECT, Opto 22, Schneider Electric, and Shelly. The advisories included recommended mitigations and available updates for affected users and administrators.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
4 references tracked. Mallory keeps watching after this page renders.
[Control systems] CISA ICS security advisories (AV25-782)
cyber.gc.ca
Open sourceUbuntu security advisory (AV25-781) - Canadian Centre for Cyber Security
cyber.gc.ca
Open sourceDell security advisory (AV25-779)
cyber.gc.ca
Open sourceIBM security advisory (AV25-780)
cyber.gc.ca
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
Multiple Security Advisories for Enterprise and Industrial Products (Late October–Early November 2025)
Vendors including Hitachi Energy, Schneider Electric, ABB, Ubiquiti, Dell, IBM, Red Hat, Ubuntu, and Microsoft released security advisories between October 27 and November 3, 2025, addressing vulnerabilities across a wide range of enterprise, industrial, and cloud products. Notable advisories include CISA's ICS alerts for control systems, a critical flaw in ABB's PCM600 software (CVE-2018-1002208), a critical vulnerability in Ubiquiti's UniFi Access Application (CVE-2025-52665), and updates for Microsoft Edge, Red Hat Enterprise Linux, Ubuntu LTS versions, and multiple Dell and IBM products. Organizations are urged to review the advisories, apply recommended mitigations, and update affected systems to reduce exposure to exploitation. The advisories highlight vulnerabilities that could allow remote code execution, privilege escalation, or unauthorized access if left unpatched. The Canadian Centre for Cyber Security and CISA emphasize the importance of timely patching and mitigation, especially for products deployed in critical infrastructure and enterprise environments. Administrators should consult the official vendor advisories for detailed remediation steps and monitor for further updates as new vulnerabilities are disclosed and addressed.
Mar 21, 2026
Multiple Security Advisories for Enterprise and Industrial Products
Several major vendors, including Dell, IBM, and CISA, have released security advisories addressing vulnerabilities in a wide range of enterprise and industrial control system products. Dell's advisories cover critical updates for products such as APEX Cloud Platform for Red Hat OpenShift, Enterprise SONiC Distribution, NetWorker, PowerSwitch models, and iDRAC controllers, urging administrators to apply patches to mitigate potential risks. IBM has similarly published advisories for multiple products, while CISA has issued alerts for vulnerabilities in industrial control systems from vendors like ABB, Advantech, Delta Electronics, Fuji Electric, IDIS, Radiometrics, Survision, and Ubia, recommending prompt mitigation and updates. In addition to these broad advisories, a critical denial-of-service vulnerability (CVE-2024-20399) was identified in Cisco's Identity Services Engine (ISE), which could allow unauthenticated attackers to crash network access control systems by exploiting the RADIUS protocol. Cisco has provided both temporary and permanent mitigation steps for affected versions. Separately, CISA added a Samsung Mobile Devices out-of-bounds write vulnerability (CVE-2025-21042) to its Known Exploited Vulnerabilities Catalog, highlighting the ongoing risk posed by actively exploited flaws and urging organizations to prioritize remediation to protect against cyber threats.
Mar 21, 2026
Canadian Cyber Centre Flags Broad Vendor Patch Wave Across Enterprise and ICS Products
The Canadian Centre for Cyber Security issued a series of advisories highlighting a broad patch wave from major technology vendors, spanning enterprise infrastructure, operating systems, and industrial environments. IBM released updates for products including **AIX**, **MQ**, **QRadar Suite Software**, **Cloud Pak for Security**, multiple **IBM Verify** offerings, and other middleware and cloud components, while Dell published fixes affecting **Avamar Data Store Gen5A**, **Connectrix B-Series FOS and SANnav**, **PowerSwitch E3200-ON Series**, **PowerSwitch Z9664F-ON**, and **Secure Connect Gateway**. Red Hat and Ubuntu also pushed Linux kernel-related updates, with Red Hat covering several **RHEL** and **CodeReady Linux Builder** variants and Ubuntu addressing kernel issues in **Ubuntu 22.04 LTS** and **24.04 LTS**, including NVIDIA-related vulnerabilities referenced in `USN-8060-7` and `USN-8059-8`. Industrial and telecom systems were also affected. CISA advisories cited vulnerabilities across products from **Apeman, Ceragon, Honeywell, Inductive Automation, Lantronix, Siemens,** and **Trane**, impacting industrial control systems, building management platforms, EV chargers, networking devices, and industrial software. Separately, HPE disclosed a **remote buffer overflow** in **HPE Telco Service Orchestrator** affecting versions prior to `v4.2.12` under bulletin `HPESBNW05029` revision 1. The Cyber Centre urged organizations to review vendor guidance, implement recommended mitigations, and apply updates promptly to reduce exposure across both IT and OT environments.
Jun 22, 2026