← Back to home
ICSA-21-194-01  ·  Published 2021-07-13  ·  View on CISA ICS-CERT ↗

Schneider Electric C-Bus Toolkit

CVSS 6.5 MEDIUM

Risk Summary

Successful exploitation of this vulnerability could allow an attacker to enable remote access to the system.

CVEs (1)

Remediations

  • Schneider Electric recommends users to update to Version 1.15.9 or later. Note: A reboot will be needed after the update.
  • Use an allow list for this application
  • Turn on the computer's firewall
  • Use an antivirus program
  • Secure the computer to prevent unauthorized personnel from accessing the computer
  • See Schneider Electric's security notification SEVD-2021-194-04 for more information.

Affected Vendors

Schneider Electric Software, LLC

Affected Products (1)

Schneider Electric Software, LLC · C-Bus Toolkit <= 1.15.8

Affected Sectors

Commercial Facilities

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more