Rockwell Automation SIS Workstation and ISaGRAF Workbench
The Cybersecurity & Infrastructure Security Agency (CISA) has issued an advisory regarding a vulnerability in Rockwell Automation's SIS Workstation and ISaGRAF Workbench. The vulnerability, identified as CVE-2015-9268, is due to improper input validation and could allow unprivileged local users to overwrite files with malicious programs. Affected products include Safety Instrumented System Workstation versions 1.2 up to 2.00 and ISaGRAF Workbench versions 6.6.9 up to 6.06.10. Rockwell Automation recommends updating the affected software to the latest versions and implementing security best practices to minimize the risk of exploitation. CISA also advises users to take defensive measures and follow established internal procedures for reporting suspected malicious activity. CVEs: CVE-2015-9268 [View Article](https://www.cisa.gov/news-events/ics-advisories/icsa-23-318-02)