Schneider Electric Update
1850Warning Date
Severity Level
Warning Number
Target Sector
9 December, 2020
● High
2020-2166
All
Description:
Schneider Electric has released a security update to address multiple vulnerabilities in the following products:
- Easergy T300 with firmware
- Versions 2.7 and prior
- Modicon M221
- All versions
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Denial of service (DoS)
- Remote code execution
- Exposure of sensitive information
Best practice and Recommendations:
The CERT team encourages users to review Schneider Electric security advisory and apply the necessary update:
Schneider Electric strongly recommends following industry cybersecurity best practices for Modicon M221: