- Healthcare facilities are at risk due to vulnerabilities in building management systems.
- CISA has identified two new critical vulnerabilities in Schneider Electric’s EcoStruxure platform.
- Organizations must prioritize updates to avoid potential data breaches and operational disruptions.
The healthcare industry is under increasing cyberattack pressure, with vulnerabilities in critical infrastructure systems posing significant risks. Recent advisories highlight two major security gaps that could impact healthcare facilities:
### Schneider Electric EcoStruxure Vulnerabilities
Schneider Electric’s EcoStruxure Building Operation Workstation and EcoStruxure Building Operation WebStation are critical to healthcare facilities, managing energy and building systems. However, unpatched vulnerabilities (CVE-2026-1227, CVE-2026-1226) expose local files and risk denial of service, leading to potential data breaches.
These vulnerabilities affect:
- EcoStruxure Building Operation Workstation versions >=7.0.x|<7.0.3.2000_(CP1)
- EcoStruxure Building Operation WebStation versions >=6.x|<6.0.4.14001_(CP10)
### CISA’s Known Exploited Vulnerabilities
CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog, based on active exploitation:
Phase 1: Initial breach
Phase 2: Data exfiltration
– CVE-2022-20775: Cisco Catalyst SD-WAN Path Traversal Vulnerability
– CVE-2026-20127: Cisco Catalyst SD-WAN Controller and Manager Authentication Bypass Vulnerability
### Breach Statistics
| Affected Systems | Healthcare Infrastructure |
| Severity | High (CVSS score: 8.8-10) |
| Potential Impact | Data breaches, operational downtime |
### Mitigation Recommendations
Alert: Timely updates are critical to mitigate risks. Organizations must prioritize patching and vulnerability management.
For more insights into healthcare cybersecurity, visit:
Critical Security Developments in Healthcare Mergers
and
Rising Threats in 2026.