CISA published five advisories on May 21, 2026, covering ABB products including B&R Automation Runtime SDM (XSS and CSV injection, patched in version 6.4), B&R Automation Studio, B&R Automation Runtime, B&R PCs, Terra AC Wallbox EV charging infrastructure, and Automation Builder. No active exploitation has been confirmed, but these products sit in operational technology and building management environments where vulnerability windows extend significantly beyond enterprise IT timelines.