Cloud Defense Logo

Products

Solutions

Company

CWE-1380: Post-Analysis Changes in ICS Security Vulnerabilities

This weakness concerns modifications made to an already analyzed and approved ICS environment, potentially introducing fresh security vulnerabilities. Discover insights from SEI ETF's publication and CWE team recommendations.

Summary

This category encompasses weaknesses mentioned in the SEI ETF's publication titled "Categories of Security Vulnerabilities in ICS" from March 2022, specifically in the category of "Post-analysis changes." It points out that any modifications made to an already analyzed and approved ICS environment have the potential to introduce fresh security vulnerabilities (as opposed to safety). It is worth noting that the recommendations referred to as "Nearest IT Neighbor" in the report and the suggestions put forth by the CWE team are part of this category. These associations may undergo changes in future versions of CWE.

Is your System Free of Underlying Vulnerabilities?
Find Out Now