ICSA-12-018-01B
·
Published 2025-06-09
·
View on CISA ICS-CERT ↗
Schneider Electric Quantum Ethernet Module Hard-Coded Credentials
CVSS 10.0
CRITICAL
CVEs (1)
Remediations
- Schneider Electric has created firmware upgrades that resolve the Telnet and Windriver debug port vulnerabilities for all affected products by removing the Telnet and Windriver services from these modules. According to Schneider Electric, removing these services will not affect the capacities/functionalities of the product or impact the performance of customer installations. Telnet and Windriver debug services were installed only for advanced troubleshooting use and were never intended for customer use.
- Schneider Electric has posted firmware upgrades on their Web site, (http://www.schneider-electric.com/download/ww/en/results/3541958-SoftwareFirmware/). Users should ensure they are using the minimum versions referenced below: Quantum - 140NOE77101 Exec V5.01 or greater for Unity Users, 140NOE77111 Exec V5.11 or greater, 140NOE77101 Exec. V4.9 or greater for Concept Users, 140NOE77111 Exec. V5.5 or greater for Concept Users, 140CPU65150 Exec V3.8 or greater, 140CPU65160 Exec V3.8 or greater, 140CPU65260 Exec V3.8 or greater, and 140NOC77101 Exec V1.03 or greater.
- Premium - TSXETY4103 Exec V5.2 or greater, TSXETY5103 Exec V5.5 or greater, TSXP571634 Exec V5.2 or greater, TSXP572634 Exec V5.2 or greater, TSXP573634 Exec V5.2 or greater, TSXP574634 Exec V3.8 or greater, TSXP575634 Exec V3.8 or greater, TSXP576634 Exec V3.8 or greater, and TSXETC101 Exec V2.01 or greater.
- M340 - BMXNOE0100 Exec V2.50 or greater, BMXNOE0110 Exec v5.3 or greater, and BMXNOC0401 Exec V2.01 or greater.
- Schneider has also released a firmware upgrade to address the FTP service vulnerability referenced above. It is available on selected Quantum programmable logic controller modules. This upgrade includes a new feature that allows the user to enable or disable both the FTP and HTTP services on the modules. Disabling these services will mitigate the vulnerability mentioned above. The following products support the HTTP and FTP service enable and disable feature: 140NOE77101 Firmware Version 06.00 or greater, and 140NOE77111 Firmware Version: 06.00 or greater.
Affected Vendors
Schneider Electric
Affected Products (26)
Schneider Electric
·
140NOE77101
<=Firmware_V4.9
Schneider Electric
·
140NOE77111
<=Firmware_V5.0
Schneider Electric
·
140NOE77100
<=Firmware_V3.4
Schneider Electric
·
140NOE77110
<=Firmware_V3.3
Schneider Electric
·
140CPU65150
<=Firmware_V3.5
Schneider Electric
·
140CPU65160
<=Firmware_V3.5
Schneider Electric
·
140CPU65260
<=Firmware_V3.5
Schneider Electric
·
140NOC77100
<=Firmware_V1.01
Schneider Electric
·
140NOC77101
<=Firmware_V1.01
Schneider Electric
·
TSXETY4103
<=Firmware_V5.0
Schneider Electric
·
TSXETY5103
<=Firmware_V5.0
Schneider Electric
·
TSXP571634M
<=Firmware_V4.9
Schneider Electric
·
TSXP572634M
<=Firmware_V4.9
Schneider Electric
·
TSXP573634M
<=Firmware_V4.9
Schneider Electric
·
TSXP574634M
<=Firmware_V3.5
Schneider Electric
·
TSXP575634M
<=Firmware_V3.5
Schneider Electric
·
TSXP576634M
<=Firmware_V3.5
Schneider Electric
·
TSXETC101
<=Firmware_V1.01
Schneider Electric
·
BMXNOE0100
<=Firmware_V2.3
Schneider Electric
·
BMXNOE0110
<=Firmware_V4.65
Schneider Electric
·
BMXNOC0401
<=Firmware_V1.01
Schneider Electric
·
STBNIC2212
<=Firmware_V2.10
Schneider Electric
·
STBNIP2311
<=Firmware_V3.01
Schneider Electric
·
STBNIP2212
<=Firmware_V2.73
Schneider Electric
·
BMXP342020
<=Firmware_V2.2
Schneider Electric
·
BMXP342030
<=Firmware_V2.2
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more