← Back to home
ICSA-15-055-03  ·  Published 2025-06-06  ·  View on CISA ICS-CERT ↗

Schneider Electric Invensys Positioner Buffer Overflow Vulnerability

CVSS 6.9 MEDIUM

CVEs (1)

Remediations

  • Schneider Electric encourages customers using these products to download the latest version, V3.6.3, that mitigates this vulnerability. It can be found at the bottom of the following web site: http://www.foxboro-eckardt.eu/download/FDT-DTMselector.html
  • Schneider Electric’s security notice SEVD-2015-050-01 is available at the following location: http://download.schneider-electric.com/files?p_File_Id=740491624andp_File_Name=SEVD-2015-050-01.pdf

Affected Vendors

Schneider Electric

Affected Products (2)

Schneider Electric · DTM used with SRD 960 Control Valve Positioners <=3.1.6
Schneider Electric · DTM used with SRD 991 Control Valve Positioners <=3.1.6

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more