Serial number: AV24-646
Date: November 12, 2024
On November 12, 2024, Schneider Electric published advisories to address vulnerabilities in the following products:
- EcoStruxure IT Gateway – versions 1.21.0.6, 1.22.0.3, 1.22.1.5 and 1.23.0.4
- Modicon M340 CPU, MC80 and Momentum Unity M1E Processor – all versions
- PowerLogic PM5320 – version 2.3.8 and prior
- PowerLogic PM5340 – version 2.3.8 and prior
- PowerLogic PM5341 – version 2.6.6 and prior
The Cyber Centre encourages users and administrators to review the provided web links, perform the suggested mitigations and apply the necessary updates.
This alert was originated From: Canadian Centre for Cyber Security
https://cyber.gc.ca/en/alerts-advisories/control-systems-schneider-electric-security-advisory-av24-646