ICS Security Week in Review — 26 May 2026
This week's advisory feeds produced 21 ICS security advisories across 13 vendors.
At a Glance
| | |
|---|---|
| Total advisories | 21 |
| Critical severity | 4 |
| High severity | 4 |
| Actively exploited (CISA KEV) | 1 |
| Vendors affected | 13 |
By source:
- CISA ICS-CERT: 13
- BSI CERT-Bund (EU): 8
---
⚠️ Actively Exploited This Week
1 advisory this week involve CVEs on CISA's Known Exploited Vulnerabilities (KEV) catalog — meaning attackers are actively using them right now. These should be your highest priority.
---
Top Advisories This Week
#### 🔴 ICSA-26-139-02 — CVSS 10.0 ⚠️ ACTIVELY EXPLOITED
Siemens RUGGEDCOM APE1808 Devices
Affected: Siemens — CVE-2026-0300
#### 🔴 ICSA-26-141-03 — CVSS 9.8
ABB B&R Automation Studio
Affected: ABB — CVE-2025-6965, CVE-2025-3277 +23 more
#### 🔴 ICSA-26-139-03 — CVSS 9.1
ScadaBR
Affected: ScadaBR — CVE-2026-8602, CVE-2026-8603 +2 more
#### 🔴 ICSA-26-139-04 — CVSS 9.1
ZKTeco CCTV Cameras
Affected: ZKTeco — CVE-2026-8598
#### 🟠 ICSA-26-141-02 — CVSS 8.3
ABB B&R PCs
Affected: ABB — CVE-2023-45229, CVE-2023-45230 +7 more
---
Most Active Vendors This Week
- ABB — 6 advisories
- Open Source — 4 advisories
- Siemens — 1 advisory
- ScadaBR — 1 advisory
- ZKTeco — 1 advisory
---
Don't Miss the Next One
OTWarden monitors CISA ICS-CERT, BSI CERT-Bund (EU), Siemens ProductCERT, and Rockwell Automation 24/7 and emails you within 2 hours when a new advisory matches your watchlist — filtered to your specific vendors and products.
Browse this week's full list at otwarden.com/top-advisories — no login needed.