Serial number: AV24-083
Date: February 13, 2024
On February 13, 2024, Schneider Electric published security advisories to highlight vulnerabilities in the following products:
- EcoStruxure Control Expert – versions prior to v16.0
- EcoStruxure IT Gateway – versions 1.20.x and prior
- EcoStruxure Process Expert – versions prior to v2023
- Modicon M340 CPU – versions prior to sv3.60
- Modicon M580 CPU – versions prior to sv4.20
- Modicon M580 CPU Safety – all versions
- Harmony Control Relay RMNF22TB30 – all versions
- Harmony Timer Relay RENF22R2MMW – all versions
The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates.