ICS Security Week in Review — 7 July 2026
This week's advisory feeds produced 44 ICS security advisories across 27 vendors.
At a Glance
| | |
|---|---|
| Total advisories | 44 |
| Critical severity | 7 |
| High severity | 6 |
| Actively exploited (CISA KEV) | 1 |
| Vendors affected | 27 |
By source:
- BSI CERT-Bund (EU): 27
- CISA ICS-CERT: 16
- Siemens ProductCERT: 1
---
⚠️ Actively Exploited This Week
1 advisory this week involve CVEs on CISA's Known Exploited Vulnerabilities (KEV) catalog — meaning attackers are actively using them right now. These should be your highest priority.
---
Top Advisories This Week
#### 🔴 ICSA-26-139-02 — CVSS 10.0 ⚠️ ACTIVELY EXPLOITED
Siemens RUGGEDCOM APE1808 Devices
Affected: Siemens — CVE-2026-0256, CVE-2026-0257 +6 more
#### 🔴 ICSA-26-183-03 — CVSS 10.0
Gardyn IoT Hub
Affected: Gardyn — CVE-2026-13768, CVE-2026-55726 +1 more
#### 🔴 ICSA-26-181-06 — CVSS 10.0
StoneFly Storage Concentrator
Affected: StoneFly — CVE-2026-50110, CVE-2026-56413 +3 more
#### 🔴 ICSMA-25-364-01 — CVSS 9.8
WHILL Model C2 Electric Wheelchairs and Model F Power Chairs (Update B)
Affected: WHILL Inc. — CVE-2025-14346
#### 🔴 ICSA-26-181-07 — CVSS 9.8
Delta Electronics DVP12SE PLC
Affected: Delta Electronics — CVE-2026-12819, CVE-2026-12818
---
Most Active Vendors This Week
- Open Source — 12 advisories
- Siemens — 4 advisories
- Gardyn — 2 advisories
- Mitsubishi Electric — 2 advisories
- Mozilla — 2 advisories
---
Don't Miss the Next One
OTWarden monitors CISA ICS-CERT, BSI CERT-Bund (EU), Siemens ProductCERT, and Rockwell Automation 24/7 and emails you within 2 hours when a new advisory matches your watchlist — filtered to your specific vendors and products.
Browse this week's full list at otwarden.com/top-advisories — no login needed.