The official site for Saudi CERT
Schneider Electric Alert
2611
Warning Date
Severity Level
Warning Number
Target Sector
9 May, 2023
● Critical
2023-5577
All
Schneider Electric has released security updates to address several vulnerabilities in the following products:
- EcoStruxure™ Power Operation
- EcoStruxure™ Power SCADA Operation
- PowerLogic ION9000
- PowerLogic ION7400
- PowerLogic PM8000
- PowerLogic ION8650
- PowerLogic ION8800
- Legacy ION products
An attacker could exploit these vulnerabilities by doing the following:
- Remote Code Execution
- Denial of Service (DoS)
- Path Traversal
- Sensitive Information disclosure
- Improper Authorization
The CERT team encourages users to review Schneider Electric security advisory and apply the necessary updates:
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-129-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-129-04.pdf&_ga=2.165536191.1606696301.1683620785-943928184.1670928219
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-129-03&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-129-03.pdf&_ga=2.165536191.1606696301.1683620785-943928184.1670928219
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2023-129-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2023-129-02.pdf&_ga=2.165536191.1606696301.1683620785-943928184.1670928219
Rate the content
Share the page
