ICS Security Week in Review — 23 June 2026
This week's advisory feeds produced 133 ICS security advisories across 42 vendors.
At a Glance
| | |
|---|---|
| Total advisories | 133 |
| Critical severity | 2 |
| High severity | 10 |
| Actively exploited (CISA KEV) | 3 |
| Vendors affected | 42 |
By source:
- BSI CERT-Bund (EU): 114
- CISA ICS-CERT: 13
- Rockwell Automation: 6
---
⚠️ Actively Exploited This Week
3 advisories this week involve CVEs on CISA's Known Exploited Vulnerabilities (KEV) catalog — meaning attackers are actively using them right now. These should be your highest priority.
---
Top Advisories This Week
#### 🔴 ICSA-26-169-01 — CVSS 9.8
AVer PTC cameras
Affected: AVer — CVE-2026-40624
#### 🔴 ICSA-26-167-05 — CVSS 9.4
Rockwell Automation FLEX I/O EtherNet/IP Adapters
Affected: Rockwell Automation — CVE-2026-0646, CVE-2026-0647
#### 🟠 ICSA-26-169-07 — CVSS 8.3
Schneider Electric Easergy, EcoStruxture, PowerLogic, and Saitel Products
Affected: Schneider Electric — CVE-2026-4827
#### 🟠 ICSA-26-169-02 — CVSS 7.8
AzeoTech DAQFactory
Affected: AzeoTech — CVE-2026-12390
#### 🟠 ICSA-26-169-03 — CVSS 7.7
Rockwell Automation FactoryTalk Historian Site Edition
Affected: Rockwell Automation — CVE-2025-13036, CVE-2025-44019 +1 more
---
Most Active Vendors This Week
- Open Source — 52 advisories
- Oracle — 20 advisories
- Rockwell Automation — 15 advisories
- Red Hat — 13 advisories
- SUSE — 13 advisories
---
Don't Miss the Next One
OTWarden monitors CISA ICS-CERT, BSI CERT-Bund (EU), Siemens ProductCERT, and Rockwell Automation 24/7 and emails you within 2 hours when a new advisory matches your watchlist — filtered to your specific vendors and products.
Browse this week's full list at otwarden.com/top-advisories — no login needed.