CISA has added a critical vulnerability in OpenPLC ScadaBR (CVE-2021-26829) to its Known Exploited Vulnerabilities (KEV) catalog. Though an older CVE, its addition confirms recent active weaponization against industrial control environments.
Business Impact
This flaw affects OT networks using OpenPLC. Exploitation allows attackers to inject malicious scripts or manipulate system settings, potentially disrupting physical industrial processes or using the compromised system as a pivot point into the wider OT network.
Why It Happened
The vulnerability is a Cross-Site Scripting (XSS) flaw in the system settings component. Attackers are revisiting older, unpatched OT vulnerabilities because many industrial environments operate on “legacy” cycles and remain unpatched for years.
Recommended Executive Action
Direct OT security teams to audit for OpenPLC usage immediately. Apply patches or isolate affected systems behind strict firewalls. Ensure that no ICS/SCADA interfaces are exposed to the public internet.
Hashtags: #CISA #KEV #OTSecurity #ICS #OpenPLC #SCADA #Vulnerability #CriticalInfrastructure #InfoSec