ICSA-16-070-01
·
Published 2025-06-05
·
View on CISA ICS-CERT ↗
Schneider Electric Telvent RTU Improper Ethernet Frame Padding Vulnerability
CVSS 5.3
MEDIUM
CVEs (1)
Remediations
- Schneider-Electric provides a customer web site for access to all Sage RTU vulnerability and update information at: (https://infrastructurecommunity.schneider-electric.com/community/products/infrastructure-products/sage)
- The Telvent Sage 2300 is end of life for security patches, and customers are advised to move to the Sage 2400 platform.
- The Telvent SAGE 2300 family is end of life and no longer supported by Schneider Electric. The Telvent SAGE 2400 family is still supported and maintained with patches. Schneider Electric may be contacted using the following: Sage Support Office Phone: (713) 920-6832 Email: (mailto:[email protected])
Affected Vendors
Schneider Electric
Affected Products (7)
Schneider Electric
·
Sage 3030M firmware
<C3414-500-S02J2
Schneider Electric
·
Sage 1410 firmware
<C3414-500-S02J2
Schneider Electric
·
Sage1430 firmware
<C3414-500-S02J2
Schneider Electric
·
Sage 1450 firmware
<C3414-500-S02J2
Schneider Electric
·
LANDAC II-2 firmware
<C3414-500-S02J2
Schneider Electric
·
Sage 2300 firmware
<C3413-500-S01
Schneider Electric
·
Sage 2400 firmware
<C3414-500-S02J2
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more