i6eal.de
DEEN
Start a project
ICS/OT Vulnerability Index

New flaws in your industrial hardware

Industry 4.0 connects machines – and widens the attack surface. This radar counts new security advisories (ICS-CERT) for the automation vendors that run German factories: Siemens, Phoenix Contact, WAGO, Beckhoff, SICK, Schneider, Rockwell, ABB and more.

Updated 2 hours ago
1,955advisories in total (since 2010)
277new in the last 12 months
430of which critical
9affected German vendors

By severity

Distribution of all tracked advisories by CVSS severity.

Critical · 430High · 1,048Medium · 441Low · 31n/a · 5

Advisories per month

New advisories per month for the tracked vendors (last 24 months).

By vendor

Which automation vendors account for the most advisories. “DE” = headquartered in Germany.

  1. SiemensDE1,026
  2. Rockwell Automation252
  3. Schneider Electric245
  4. Mitsubishi Electric139
  5. Hitachi Energy108
  6. ABB89
  7. Omron30
  8. Phoenix ContactDE25
  9. FestoDE15
  10. WAGODE13
  11. Pepperl+FuchsDE6
  12. BeckhoffDE4
  13. SICKDE1
  14. PilzDE1
  15. TurckDE1

More advisories doesn't mean “less secure” – large, widely deployed portfolios (e.g. Siemens) simply generate more reports.

Recent advisories

The latest ICS-CERT advisories for the tracked vendors.

  1. HighCVSS 7.7Rockwell Automation18 Jun 2026

    Rockwell Automation FactoryTalk Historian Site Edition

    Critical ManufacturingCVE-2025-13036View CISA advisory
  2. HighCVSS 7.1Schneider Electric18 Jun 2026

    Schneider Electric EasyLogic T150 and Saitel DP

    Energy; Critical ManufacturingCVE-2026-6865View CISA advisory
  3. HighCVSS 7.5Mitsubishi Electric18 Jun 2026

    Mitsubishi Electric MELSEC iQ-F Series

    Critical ManufacturingCVE-2026-8805View CISA advisory
  4. HighCVSS 7.5Mitsubishi Electric18 Jun 2026

    Mitsubishi Electric Co.'s MELSEC iQ-F Series FX5-ENET/IP Ethernet Module

    Critical ManufacturingCVE-2026-8806View CISA advisory
  5. HighCVSS 8.3Schneider Electric18 Jun 2026

    Schneider Electric Easergy, EcoStruxture, PowerLogic, and Saitel Products

    Chemical; Critical Manufacturing; Energy; Water and Wastewater SystemsCVE-2026-4827View CISA advisory
  6. HighCVSS 7Rockwell Automation16 Jun 2026

    Rockwell Automation FactoryTalk, Analytics, PavilionX

    Critical ManufacturingCVE-2025-14272View CISA advisory
  7. HighCVSS 7.5Rockwell Automation16 Jun 2026

    Rockwell Automation RSLinx

    Critical Manufacturing; Energy; Food and Agriculture; Water and Wastewater SystemsCVE-2020-13573View CISA advisory
  8. HighCVSS 7.5Rockwell Automation16 Jun 2026

    Rockwell Automation Logix 5370 & 5570 Controllers Vulnerable To Denial of Service Via CIP

    Critical ManufacturingCVE-2026-11317View CISA advisory
  9. HighCVSS 7.5Rockwell Automation16 Jun 2026

    Rockwell Automation CompactLogix

    Critical ManufacturingCVE-2025-11694View CISA advisory
  10. CriticalCVSS 9.4Rockwell Automation16 Jun 2026

    Rockwell Automation FLEX I/O EtherNet/IP Adapters

    Critical ManufacturingCVE-2026-0646View CISA advisory
  11. CriticalCVSS 9Schneider Electric9 Jun 2026

    Schneider Electric EcoStruxure Panel Server

    Commercial Facilities; Critical Manufacturing; EnergyCVE-2026-6866View CISA advisory
  12. HighCVSS 8.3Siemens9 Jun 2026

    Siemens KACO Blueplanet Inverters

    EnergyCVE-2025-40946View CISA advisory
  13. HighCVSS 7.5Schneider Electric9 Jun 2026

    Schneider Electric Modicon Network Managed Switches

    Commercial Facilities; Energy; Food and Agriculture; Government Services and Facilities; Transportation Systems; Water and WastewaterCVE-2024-3596View CISA advisory
  14. HighCVSS 7.5Hitachi Energy4 Jun 2026

    Hitachi Energy ITT600 Explorer

    EnergyCVE-2024-8176View CISA advisory
  15. HighCVSS 7.8Hitachi Energy4 Jun 2026

    Hitachi Energy RTU500

    Dams; Energy; Water and Wastewater SystemsCVE-2025-69421View CISA advisory
  16. MediumCVSS 5.5Hitachi Energy4 Jun 2026

    Hitachi Energy MACH HiDraw

    Dams; Energy; Transportation SystemsCVE-2026-7310View CISA advisory
  17. HighCVSS 8ABB28 May 2026

    ABB EIBPORT

    Critical Manufacturing; Information TechnologyCVE-2021-22291View CISA advisory
  18. MediumCVSS 6.8ABB28 May 2026

    ABB Busch-Welcome 2 Wire Door Opener Actuator

    Commercial FacilitiesCVE-2025-7705View CISA advisory
  19. MediumCVSS 5.5Schneider Electric28 May 2026

    Schnieider Electric EcoStruxure Machine Expert HVAC

    Chemical; Critical Manufacturing; Energy; Water and Wastewater SystemsCVE-2026-6332View CISA advisory
  20. MediumCVSS 6.8ABB26 May 2026

    ABB Terra AC

    Commercial Facilities; Critical Manufacturing; Energy; Transportation SystemsCVE-2025-5517View CISA advisory
  21. MediumCVSS 5.8ABB26 May 2026

    ABB AC500 V2

    Critical Manufacturing; Energy; Water and Wastewater SystemsCVE-2025-7745View CISA advisory
  22. HighCVSS 7.5ABB26 May 2026

    ABB Ability Zenon Remote Transport Vulnerability (Update A)

    Chemical; Communications; Critical Manufacturing; Dams; Energy; Healthcare and Public Health; Information Technology; Water and Wastewater SystemsCVE-2025-8754View CISA advisory
  23. CriticalCVSS 9.8ABB26 May 2026

    ABB Ability Camera Connect

    Chemical; Commercial Facilities; Communications; Critical Manufacturing; Energy; Transportation SystemsCVE-2024-46461View CISA advisory
  24. HighCVSS 7.4ABB26 May 2026

    ABB LVS MConfig

    Chemical; Critical Manufacturing; Energy; Food and Agriculture; Transportation Systems; Water and Wastewater SystemsCVE-2025-9970View CISA advisory
  25. MediumCVSS 5.9Hitachi Energy21 May 2026

    Hitachi Energy GMS600

    Critical ManufacturingCVE-2022-4304View CISA advisory
  26. MediumCVSS 6.1ABB21 May 2026

    ABB Terra AC Wallbox

    EnergyCVE-2025-10504View CISA advisory
  27. HighCVSS 7.1ABB19 May 2026

    ABB CoreSense HM and CoreSense M10

    Food and Agriculture; Commercial Facilities; Critical ManufacturingCVE-2025-3465View CISA advisory
  28. CriticalCVSS 10Siemens19 May 2026

    Siemens RUGGEDCOM APE1808 Devices

    Critical ManufacturingCVE-2026-0300View CISA advisory
  29. HighCVSS 8Siemens14 May 2026

    Siemens gWAP

    Critical ManufacturingCVE-2026-40175View CISA advisory
  30. MediumCVSS 6.8Siemens14 May 2026

    Siemens Ruggedcom Rox

    Critical ManufacturingCVE-2025-40948View CISA advisory

How we measure

We read the ICS Advisory Project database – an open, structured mirror of every CISA ICS-CERT advisory – and keep the vendors that matter to DACH industry.

Source: the ICS Advisory Project (github.com/icsadvprj, CC-licensed), which structures the advisories of the US agency CISA. CISA tracks globally; the advisories concern products used worldwide, including in Germany. No AI model, no keys.

All figures without guarantee. Data source: ICS Advisory Project (mirror of CISA ICS-CERT advisories, CC). The vendor selection is curated (industrial automation relevant to DACH) and not exhaustive. An advisory doesn't mean your plant is affected – check the respective original advisory. i6eal is not a security authority.

Frequently asked questions

What does the ICS/OT Vulnerability Index show?

How many new security advisories (ICS-CERT) exist for the automation vendors common in German factories – with severity, a vendor ranking, a monthly trend and the latest reports.

Where does the data come from?

From the ICS Advisory Project, an open structured database of all advisories from the US cybersecurity agency CISA (ICS-CERT). We filter to vendors relevant to DACH industry and refresh several times a day.

Does an advisory mean my plant is insecure?

Not necessarily. An advisory describes a reported flaw in a product. Whether your specific plant is affected depends on version, configuration and patch level – the original vendor/CISA advisory clarifies that.

Why does Siemens have so many advisories?

Large vendors with very broad, globally deployed portfolios (like Siemens) publish correspondingly more advisories. The absolute number is not a measure of “insecurity”.

Digitalisation that lasts.

Whether AI in production or connected OT: we bring new technology into operation securely.

Start a projectSee services