ICSA-18-163-01
·
Published 2018-06-12
·
View on CISA ICS-CERT ↗
Schneider Electric U.motion Builder
CVSS 10.0
CRITICAL
Risk Summary
Successful exploitation of these vulnerabilities could allow remote code execution.
Remediations
- Schneider Electric has released firmware update Version 1.3.4, which includes fixes for these vulnerabilities. It is highly recommended that U.motion Builder users apply the patch in a timely manner.
- The firmware is available for download
- Schneider Electric's security notice SEVD-2018-151-01 is available
Affected Vendors
Schneider Electric Software, LLC
Affected Products (1)
Schneider Electric Software, LLC
·
U.motion Builder
< 1.3.4
Affected Sectors
Commercial Facilities, Critical Manufacturing, and Energy
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more