Schneider Electric EcoStruxure Foxboro DCS Core Control Services

CVSS 7.8 HIGH

CVEs (3)

CVE-2024-5679 CVE-2024-5680 CVE-2024-5681

Patch HF97872598 available for v9.5 to v9.8 of EcoStruxureTM Foxboro DCS Core Control Services includes a fix for these vulnerabilities. Please contact your local Service Representative or Schneider Electric Process Automation Global Customer Support Center for information on how to download and install this fix:
As the identified vulnerabilities require local user account access, EcoStruxureTM Foxboro DCS workstations should be installed in a secure location to prevent physical access by unauthorized personnel, and appropriate password protections put in place to prevent remote access by unauthorized personnel. To ensure you are informed of all updates, including details on affected products and remediation plans, subscribe to Schneider Electric’s security notification service here: https://www.se.com/en/work/support/cybersecurity/securitynotifications. jsp

Schneider Electric

Schneider Electric · EcoStruxureTM Foxboro DCS Core Control Services <=9.8

Schneider Electric · EcoStruxureTM Foxboro DCS Core Control Services >=v9.5|<v9.8

Schneider Electric · EcoStruxureTM Foxboro DCS Core Control Services HF97872598

Multiple

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.