Number: AV22-319
Date: 14 June 2022
On 14 June 2022 Schneider Electric published Security Advisories to address vulnerabilities in multiple products. Included were critical updates for the following:
- Clipsal C-Bus Network Automation Controller, 5500NAC – version V1.10.0 and prior
- Clipsal Wiser for C-Bus Automation Controller, 5500SHAC – version V1.10.0 and prior
- IGSS Data Server – versions prior to 15.0.0.22139
- Schneider Electric C-Bus Network Automation Controller, LSS5500NAC – version V1.10.0 and prior
- Schneider Electric Wiser for C-Bus Automation Controller, LSS5500SHAC – version V1.10.0 and prior
- SpaceLogic C-Bus Network Automation Controller, 5500NAC2 – version V1.10.0 and prior
- SpaceLogic C-Bus Application Controller, 5500AC2 – version V1.10.0 and prior
The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates.
Schneider Security Advisory (SEVD-2022-165-01)