[Control systems] Schneider Electric security advisory (AV24-326)

From: Canadian Centre for Cyber Security

Serial number: AV24-326
Date: June 11, 2024

On June 11, 2024, Schneider Electric published security advisories to highlight vulnerabilities in the following products:

EVlink Home Smart – version v2.0.4.1.2_131 and v2.0.3.8.2_128
Modicon M340 – all versions
Network module, Modicon M340, Modbus/TCP BMXNOE0100 – all versions
Network module, Modicon M340, Ethernet TCP/IP BMXNOE0110 – all versions
PowerLogic P5 – version v01.500.101 and prior
Sage 1410 – version C3414-500-S02K5_P8 and prior
Sage 1430 – version C3414-500-S02K5_P8 and prior
Sage 1450 – version C3414-500-S02K5_P8 and prior
Sage 2400 – version C3414-500-S02K5_P8 and prior
Sage 3030 Magnum – version C3414-500-S02K5_P8 and prior
Sage 4400 – version C3414-500-S02K5_P8 and prior
SpaceLogic AS-P – version v5.0.3 and prior
SpaceLogic AS-B – version v5.0.3 and prior

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

Schneider Electric Security Notifications

Date modified:: 2024-06-11

Language selection

Search

[Control systems] Schneider Electric security advisory (AV24-326)