Leading industrial companies Siemens, Schneider Electric, and Rockwell Automation have issued their July 2026 Patch Tuesday advisories, highlighting the vulnerabilities identified in their industrial control systems (ICS) products. These updates aim to bolster security by addressing several critical weaknesses.
Siemens’ Vulnerability Patches
Siemens released nine new advisories, with six addressing vulnerabilities rated as critical based on their Common Vulnerability Scoring System (CVSS) scores. A particularly severe flaw with a CVSS score of 10 was found in the Opencenter X application, allowing attackers to bypass authentication controls completely. Other critical vulnerabilities have been addressed in products like Mendix, Sidis Secured SmartPlug, Simatic S7-1500, Cadra, and Desigo CC, where third-party components posed risks of denial-of-service attacks, unauthorized code execution, data breaches, and privilege escalation.
Siemens also resolved high-severity issues in Simatic S7-PLCSIM, Ruggedcom APE1808, Comos, Designcenter, Simcenter, Solid Edge, and Tecnomatrix, strengthening their defense against potential cyber threats.
Schneider Electric’s Security Enhancements
Schneider Electric has issued two advisories. One targets a high-severity vulnerability in the Interactive Graphical SCADA System (IGSS), where specially crafted files could lead to arbitrary code execution. Another advisory outlines a serious authentication bypass flaw in the EcoStruxure Cybersecurity Admin Expert, which a local attacker could exploit to interfere with managed devices.
Rockwell Automation’s Critical Updates
Rockwell Automation has published 12 new advisories, with two focusing on critical vulnerabilities. A significant concern was identified in the 1715 Redundant IO product, which could allow unauthorized access to execute intrusive commands, potentially leading to file manipulation, task disruption, and memory alteration.
Furthermore, Rockwell addressed three critical denial-of-service vulnerabilities within its CompactLogix, ControlLogix, Compact GuardLogix, and GuardLogix controllers, preventing potentially irreparable system faults. High-severity vulnerabilities were also patched in the Flex 5000 Adapter, FactoryTalk products, and various other systems.
Broader Industry Context
While ABB and Mitsubishi Electric did not release new advisories this Patch Tuesday, they have communicated recent critical and high-severity vulnerabilities to their customers over the past month. Meanwhile, Germany’s VDE CERT has disclosed five new advisories concerning vulnerabilities in Murrelektronik, Mettler Toledo, Codesys, and Wago products, further emphasizing the ongoing need for vigilance in ICS cybersecurity.
The cybersecurity agency CISA distributed additional advisories, underscoring the coordinated efforts required to safeguard industrial systems from emerging threats.
As industrial systems remain pivotal to global operations, these security enhancements are crucial for mitigating risks and ensuring the integrity of essential infrastructure. Companies are encouraged to promptly apply these patches to protect against potential exploits, highlighting the critical role of continuous updates in cybersecurity strategies.
