Serial number: AV25-501
Date: August 12, 2025
Le 12 août 2025, Schneider Electric a publié des bulletins de sécurité visant à corriger des vulnérabilités liées aux produits suivants :
- BMXNGD0100: M580 Global Data module – all versions
- BMXNOC0401: Modicon M340 X80 Ethernet Communication modules – all versions
- BMXNOE0100: Modbus/TCP Ethernet Modicon M340 module – multiple versions and models
- BMXNOR0200H: Ethernet / Serial RTU Module – all versions
- EcoStruxure Building Operation Enterprise Server and Central – versions prior to 7.0.1
- EcoStruxure Enterprise Server – versions prior to 7.0.1
- EcoStruxure Power Monitoring Expert (PME) – versions 2022, 2023, 2024 and 2024 R2
- EcoStruxure Power Operation (EPO) Advanced Reporting and Dashboards Module – versions 2022 w/ Advanced Reporting Module and 2024 w/ Advanced Reporting Module
- EcoStruxure Workstation – versions prior to 7.0.1
- Modicon Controller – multiple versions and models
- Modicon M580 communication modules – multiple versions and models
- SESU – versions prior to v3.0.12
- Saitel DR RTU – version 11.06.29 and prior, version 11.06.34 and prior
The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.