Number: AV21-612
Date: 6 December 2021
On 2 December 2021 ICS-CERT published an ICS Advisory to highlight a vulnerability in the following product:
- Schneider Electric Software Update (SESU) – versions 2.3.0 to 2.5.1
Exploitation of this vulnerability could allow an actor to obtain credentials and bypass authentication.
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.
ICS Advisory (ICSA-21-336-01)
https://us-cert.cisa.gov/ics/advisories/icsa-21-336-01