[Control systems] CISA ICS security advisories (AV26–620)
Serial number: AV26–620 Date: June 22, 2026 Between June 15 and 21, 2026, CISA published ICS advisories to address vulnerabilities in the following products: Apollo Pharmacy Blood Glucose Monitoring System APG-01 BT - version 0x0110_v1.1.0 AVer PTC cameras PTC500S / PTC115 / PTC500+ / PTC115+ - all versions AzeoTech DAQFactory - versions prior to 21.1 Mitsubishi Electric Co.'s MELSEC iQ-F Series FX5-ENET/IP Ethernet Module - all versions Mitsubishi Electric MELSEC iQ-F Series FX5-EIP EtherNet/IP Module FX5-EIP - versions prior to 1.000 Rockwell Automation 1794-AENTR - versions prior to V2.012 Rockwell Automation 1794-AENTRXT - versions prior to V2.012 Rockwell Automation CompactLogix - multiple versions and models Rockwell Automation FactoryTalk Analytics PavilionX - versions prior to 7.01 Rockwell Automation FactoryTalk Historian Site Edition (SE) - versions prior to 11 and 11.00 Rockwell Automation Logix 5370 & 5570 - multiple versions and models Rockwell Automation RSLinx Classic - versions prior to 4.50.00 Schneider Electric Easergy, EcoStruxture, PowerLogic, and Saitel Products - multiple versions and models Schneider Electric EasyLogic T150 and Saitel DP - versions prior to 11.06.31 and 11.06.36 The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates if available. CISA ICS Advisories
CSIRTS triage
- What
- CISA published ICS advisories to address vulnerabilities in various control systems.
- Who is affected
- Users of the affected control systems are at risk.
- Urgency
- Remediation is important to ensure the security of industrial control systems.
- Action
- Users should review the advisories and apply the necessary updates.
AI-assisted analysis generated from the source advisory — verify against the original.
Details
Original advisory: https://cyber.gc.ca/en/alerts-advisories/control-systems-cisa-ics-security-advisories-av26-620
More from Canadian Centre for Cyber Security
- unknownBitWarden security advisory (AV26-683)2026-07-10
- criticalAL25-007 - Vulnerability impacting Roundcube Webmail – CVE-2025-49113 – Update 12026-07-10
- unknownMicrosoft Edge security advisory (AV26-682)2026-07-10
- criticalBroadcom VMware security advisory (AV26-681)2026-07-10
- unknownDjango security advisory (AV26-084) – Update 12026-07-09