Serial number: AV25-277
Date: May 14, 2025
On May 13, 2025, Schneider Electric published advisories to address vulnerabilities in multiple products. Included were updates for the following products:
- Galaxy VS, VL and VXL – all versions
- Modicon Controllers M241 / M251– versions prior to v5.3.12.48
- Modicon Controllers M258 / LMC058 – all versions
- PrismaSeT Active - Wireless Panel Server – all versions
- Wiser AvatarOn 6K Freelocate – all versions
- Wiser Cuadro H 5P Socket – all versions
The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates.
- Schneider Electric Security Notification - Galaxy VS, Galaxy VL, Galaxy VXL (PDF)
- Schneider Electric Security Notification - Modicon Controllers M241/M251/M258/LMC058 (PDF)
- Schneider Electric Security Notification - PrismaSeT Active - Wireless Panel Server (PDF)
- Schneider Electric Security Notification - Wiser Home Automation (PDF)
- Schneider Electric Security Notifications