ICSA-12-131-02
·
Published 2025-06-05
·
View on CISA ICS-CERT ↗
GE Intelligent Platforms Proficy HTML Help Vulnerabilities
CVSS 8.8
HIGH
CVEs (2)
Remediations
- GE Intelligent Platforms recommends that the KeyHelp.ocx ActiveX control be unregistered and deleted to eliminate these vulnerabilities. GE Intelligent Platforms has recommended specific control removal instructions for each of the affected products to ensure it continues to function properly once the control is removed. Please see GE Security Advisory GEIP12-04 at the following location: (https://ge-ip.force.com/communities/en_US/Article/GE-Intelligent-Platforms-Security-Advisory-GEIP12-04)
Affected Vendors
GE
Affected Products (6)
GE
·
Proficy Historian
4.5|4.0|3.5|3.1
GE
·
Proficy HMI/SCADA – iFIX
5.1|5.0
GE
·
Proficy Pulse
1.0
GE
·
Proficy Batch Execution
5.6
GE
·
SI7 I/O Driver
7.20|7.42
GE
·
SI7 I/O Driver
>=7.20|<=7.42
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more