← Back to home
ICSA-25-303-01  ·  Published 2026-03-17  ·  View on CISA ICS-CERT ↗

International Standards Organization ISO 15118-2 (Update A)

CVSS 6.3 MEDIUM

Risk Summary

Successful exploitation of this vulnerability could result in man-in-the-middle attacks.

CVEs (1)

Remediations

  • ISO recommends using TLS for all communications in accordance with ISO 15118-20. While the use of TLS is recommended in ISO 15118-2, it is required in the ISO 15118-20 revision. TLS should be implemented with certificate chaining.
  • For additional information, please contact the International Electrotechnical Commission here: https://www.iec.ch/contact?id=40499.

Affected Vendors

ISO/IEC

Affected Sectors

Transportation Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more