The official site for Saudi CERT
Schneider Electric Alert
9425
Warning Date
Severity Level
Warning Number
Target Sector
13 October, 2022
● High
2022-5341
All
Schneider Electric has released security updates to address several vulnerabilities in the following products:
- EcoStruxure™ Operator Terminal Expert
- Pro-face BLUE
- EcoStruxure™ Panel Server Box (PAS900)
- EcoStruxure™ Power SCADA Operation 2020
- EcoStruxure™ Power SCADA Operation 2020 R2
- EcoStruxure™ Power Operation 2021
Attacker could exploit these vulnerabilities by doing the following:
- Execute arbitrary code
- Unauthorized disclosure of information
The CERT team encourages users to review Schneider Electric security advisory and apply the necessary updates:
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-284-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-284-01_EcoStruxure_Operator_Terminal_Expert_and_Pro-face_BLUE_Security_Notification.pdf&_ga=2.207139859.1833473695.1665647888-99352730.1664689682
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-284-02&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-284-02-EcoStruxure_Panel_Server_Box_PAS900_Security_Notification.pdf&_ga=2.207139859.1833473695.1665647888-99352730.1664689682
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2022-284-04&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2022-284-04-EcoStruxure_Power_Operation_and_EcoStruxure_Power_SCADA.pdf&_ga=2.207139859.1833473695.1665647888-99352730.1664689682
Rate the content
Share the page
