ICS Security Week in Review — 19 May 2026
This week's advisory feeds produced 86 ICS security advisories across 17 vendors.
At a Glance
| | |
|---|---|
| Total advisories | 86 |
| Critical severity | 16 |
| High severity | 15 |
| Actively exploited (CISA KEV) | 3 |
| Vendors affected | 17 |
By source:
- CISA ICS-CERT: 36
- BSI CERT-Bund (EU): 31
- Siemens ProductCERT: 19
---
⚠️ Actively Exploited This Week
3 advisories this week involve CVEs on CISA's Known Exploited Vulnerabilities (KEV) catalog — meaning attackers are actively using them right now. These should be your highest priority.
---
Top Advisories This Week
#### 🔴 ICSA-26-015-08 — CVSS 10.0
Siemens Industrial Edge Devices
Affected: Siemens — CVE-2025-40805
#### 🔴 ICSA-25-162-05 — CVSS 9.8 ⚠️ ACTIVELY EXPLOITED
Siemens SIMATIC S7-1500 CPU family
Affected: Siemens — CVE-2021-41617, CVE-2023-4527 +147 more
#### 🔴 ICSA-26-071-02 — CVSS 9.8 ⚠️ ACTIVELY EXPLOITED
Siemens RUGGEDCOM APE1808 Devices
Affected: Siemens — CVE-2025-53847, CVE-2025-55018 +4 more
#### 🔴 ICSA-26-134-16 — CVSS 9.8
Siemens Ruggedcom Rox
Affected: Siemens — CVE-2019-13103, CVE-2019-13104 +33 more
#### 🔴 ICSA-26-134-17 — CVSS 9.8
Universal Robots Polyscope 5
Affected: Universal Robots — CVE-2026-8153
---
Most Active Vendors This Week
- Siemens — 45 advisories
- Open Source — 21 advisories
- ABB — 5 advisories
- Microsoft — 2 advisories
- Universal Robots — 1 advisory
---
Don't Miss the Next One
OTWarden monitors CISA ICS-CERT, BSI CERT-Bund (EU), Siemens ProductCERT, and Rockwell Automation 24/7 and emails you within 2 hours when a new advisory matches your watchlist — filtered to your specific vendors and products.
Browse this week's full list at otwarden.com/top-advisories — no login needed.