← Back to home
ICSA-18-046-04  ·  Published 2018-02-15  ·  View on CISA ICS-CERT ↗

Schneider Electric StruxureOn Gateway

CVSS 7.2 HIGH

Risk Summary

ATTENTION: Remotely exploitable/low skill level to exploit.

CVEs (1)

Remediations

  • Schneider Electric has released a new version of the software
  • For more information on these vulnerabilities and associated patch, please see Schneider Electric's security notification SEVD-2018-039-01 on their website
  • Schneider Electric reports that, in addition to upgrading to version 1.2, users should ensure they change the default passwords as this vulnerability requires authenticated access.

Affected Vendors

Schneider Electric Software, LLC

Affected Products (1)

Schneider Electric Software, LLC · StruxureOn Gateway < 1.2

Affected Sectors

Critical Manufacturing, Energy

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more