[Control systems] Schneider Electric security advisory (AV24-326)

From: Canadian Centre for Cyber Security

Serial number: AV24-326
Date: June 11, 2024

On June 11, 2024, Schneider Electric published security advisories to highlight vulnerabilities in the following products:

  • EVlink Home Smart – version v2.0.4.1.2_131 and v2.0.3.8.2_128
  • Modicon M340 – all versions
  • Network module, Modicon M340, Modbus/TCP BMXNOE0100 – all versions
  • Network module, Modicon M340, Ethernet TCP/IP BMXNOE0110 – all versions
  • PowerLogic P5 – version v01.500.101 and prior
  • Sage 1410 – version C3414-500-S02K5_P8 and prior
  • Sage 1430 – version C3414-500-S02K5_P8 and prior
  • Sage 1450 – version C3414-500-S02K5_P8 and prior
  • Sage 2400 – version C3414-500-S02K5_P8 and prior
  • Sage 3030 Magnum – version C3414-500-S02K5_P8 and prior
  • Sage 4400 – version C3414-500-S02K5_P8 and prior
  • SpaceLogic AS-P – version v5.0.3 and prior
  • SpaceLogic AS-B – version v5.0.3 and prior

The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.

Report a problem on this page

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Please select all that apply:

Thank you for your help!

You will not receive a reply. For enquiries, please contact us.

Date modified: