ICSA-18-065-02
·
Published 2018-03-06
·
View on CISA ICS-CERT ↗
Schneider Electric SoMove Software and DTM Software Components
CVSS 7.8
HIGH
Risk Summary
Vendor: Schneider Electric
CVEs (1)
Remediations
- SoMove Software—SoMove_V2.6.3
- ATV320 DTM—Schneider_Electric_Altivar_Machine_ATV320_DTM_Library_V1.1.6
- ATV340 DTM—Schneider_Electric_Altivar_Machine_ATV340_DTM_Library_V1.2.3
- ATV6XX DTM—Schneider_Electric_Altivar_Process_ATV6xx_DTM_Library_V1.8.0
- ATV9XX DTM—Schneider-Electric-Altivar-Process-ATV9xx-DTM-Library-V1.3.5
- ATV32 / ATV71 / ATV61 / ATV LIFT / ATV31_312 / ATV212 / ATV12 AltivarDtmLibraryV12.7.0
- For more information on this vulnerability and its associated patches, please see Schneider Electric's security notification SEVD-2018-060-01 on their website
- For further information related to cybersecurity in Schneider Electric products, please visit the company's cybersecurity web page
Affected Vendors
Schneider Electric Software, LLC
Affected Products (13)
Schneider Electric Software, LLC
·
ATV6xx DTM
< 1.8.0
Schneider Electric Software, LLC
·
ATV340 DTM
< 1.2.3
Schneider Electric Software, LLC
·
ATV12 DTM
< 12.7.0
Schneider Electric Software, LLC
·
ATV32 DTM
< 12.7.0
Schneider Electric Software, LLC
·
ATV320 DTM
< 1.1.6
Schneider Electric Software, LLC
·
ATV31/312 DTM
< 12.7.0
Schneider Electric Software, LLC
·
AltivarDtmLibrary
< 12.7.0
Schneider Electric Software, LLC
·
ATV9xx DTM
< 1.3.5
Schneider Electric Software, LLC
·
ATV212 DTM
< 12.7.0
Schneider Electric Software, LLC
·
ATV71 DTM
< 12.7.0
Schneider Electric Software, LLC
·
ATV61 DTM
< 12.7.0
Schneider Electric Software, LLC
·
ATV LIFT DTM
< 12.7.0
Schneider Electric Software, LLC
·
SoMove software
< 2.6.2
Affected Sectors
Critical manufacturing
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more