Schneider Electric Update
1709Warning Date
Severity Level
Warning Number
Target Sector
22 December, 2021
● High
2021-4125
Energy
Description:
Schneider Electric has released a security update to address several vulnerabilities in the following product:
- Rack PDU
- AP7xxxx and AP8xxx with NMC2: v6.9.6 and prior
- AP7xxx and AP8xxx with NMC3: v1.1.0.3 and prior
- APDU9xxx with NMC3: v1.0.0.28 and prior
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Privilege escalation
Best practice and Recommendations:
The CERT team encourages users to review Schneider Electric security advisory and apply the necessary update: