Serial number: AV25-403
Date: July 8, 2025
On July 8, 2025, Schneider Electric published advisories to address vulnerabilities in the following products:
- EcoStruxure IT Data Center Expert – version 8.3 and prior
- EcoStruxure Power Monitoring Expert (PME) – multiple versions
- EcoStruxure Power Operation (EPO) 2022 – versions CU6 and prior
- EcoStruxure Power Operation (EPO) 2024 – versions CU1 and prior
- EcoStruxure Power Operation (EPO) Advanced Reporting and Dashboards Module – version 2022 with Advanced Reporting Module and version 2024 with Advanced Reporting Module
- System Monitor application in Harmony Industrial PC HMIBMO/HMIBMI/ HMIPSO/HMIBMP/ HMIBMU/HMIPSP/HMIPEP series – all versions
- System Monitor application in Pro-face Industrial PC PS5000 series – all versions
The Cyber Centre encourages users and administrators to review the provided web link, perform the suggested mitigations and apply the necessary updates.