Serial number: AV24-646
Date: November 12, 2024
On November 12, 2024, Schneider Electric published advisories to address vulnerabilities in the following products:
- EcoStruxure IT Gateway – versions 1.21.0.6, 1.22.0.3, 1.22.1.5 and 1.23.0.4
- Modicon M340 CPU, MC80 and Momentum Unity M1E Processor – all versions
- PowerLogic PM5320 – version 2.3.8 and prior
- PowerLogic PM5340 – version 2.3.8 and prior
- PowerLogic PM5341 – version 2.6.6 and prior
The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates.
- Schneider Electric Security Notification - EcoStruxure IT Gateway
- Schneider Electric Security Notification - Modicon Controllers M340 / Momentum / MC80
- Schneider Electric Security Notification - Modicon Controllers M340 / Momentum / MC80
- Schneider Electric Security Notification - PowerLogic PM5300 Series
- Schneider Electric Security Notifications