Schneider Electric EcoStruxure

CVSS 5.4 MEDIUM

CVEs (1)

CVE-2024-8401

Remediations

EcoStruxure™ Power Monitoring Expert 2021 CU2 includes a fix for this vulnerability and is available for download here: https://ecoxpert.se.com/software-center/power-monitoringexpert/ power-monitoring-expert-2021 OR EcoStruxure™ Power Monitoring Expert 2022 includes a fix for this vulnerability and is available for download here: https://ecoxpert.se.com/software-center/power-monitoringexpert/ power-monitoring-expert-2022 OR Upgrade to the latest version of EcoStruxure™ Power Monitoring Expert. Contact the customer care center for more information.
EcoStruxure™ Power Operations 2022 CU5 includes a fix for this vulnerability and is available for download here: https://community.se.com/t5/EcoStruxure-Power-Operation/v2022- Release-amp-Updates-Install-Procedure/m-p/416561/thread-id/6058 OR Upgrade to latest version of EcoStruxure™ Power Operations. Contact the customer care center for more information. Additionally, EcoStruxure™ Power operation 2022 with Advanced Reporting utilizes EcoStruxure™ Power Monitoring Expert. You will need to update the version of EcoStruxure™ Power Monitoring Expert installed independently of the EcoStruxure™ Power Operation patch level installed and apply the appropriate EcoStruxure™ Power Monitoring Expert update as outlined above. For assistance in determining the version of PME installed, contact the Schneider Electric Customer Care Center.
EcoStruxure™ Power Operations 2021 CU3 Hotfix 3 includes a fix for this vulnerability and is available for download here: https://community.se.com/t5/EcoStruxure-Power-Operation/v2022- Release-amp-Updates-Install-Procedure/m-p/416561/thread-id/6058 OR Upgrade to latest version of EcoStruxure™ Power Operations. Contact the customer care center for more information. Additionally, EcoStruxure™ Power Operation 2021 with Advanced Reporting utilizes EcoStruxure™ Power Monitoring Expert. You will need to update the version of EcoStruxure™ Power Monitoring Expert installed independently of the EcoStruxure™ Power Operation patch level installed and apply the appropriate EcoStruxure™ Power Monitoring Expert update as outlined above. For assistance in determining the version of PME installed, contact the Schneider Electric Customer Care Center.
EcoStruxure™ Power Monitoring Expert 2020 is at its end-of-life support. Customers should consider upgrading to the latest version offering of PME to resolve this issue. Please contact Schneider Electric Customer Care Center for more details.
EcoStruxure™ Power SCADA Operation 2020 (PSO) - Advanced Reporting and Dashboards Module is at its end-of-life support. Customers should consider upgrading to the latest version offering of EPO to resolve this issue. Please contact Schneider Electric Customer Care Center for more details.

Affected Vendors

Schneider Electric

Affected Products (10)

Schneider Electric · EcoStruxure™ Power Monitoring Expert (PME) 2021 <=2021_CU1

Schneider Electric · EcoStruxure™ Power Monitoring Expert (PME) 2020 <=2020_CU3

Schneider Electric · EcoStruxure™ Power Operation (EPO) 2022 <=2022_CU4

Schneider Electric · EcoStruxure™ Power Operation (EPO) 2022 – Advanced Reporting and Dashboards Module <=2022_CU4

Schneider Electric · EcoStruxure™ Power Operation (EPO) 2021 <=2021_CU3_Hotfix_2

Schneider Electric · EcoStruxure™ Power Operation (EPO) 2021 – Advanced Reporting and Dashboards Module <=2021_CU3_Hotfix_2

Schneider Electric · EcoStruxure™ Power SCADA Operation 2020 (PSO) - Advanced Reporting and Dashboards Module vers:all/*

Schneider Electric · EcoStruxure™ Power Monitoring Expert (PME) 2021 2021_CU2

Schneider Electric · EcoStruxure™ Power Operation (EPO) 2022 2022_CU5

Schneider Electric · EcoStruxure™ Power Operation (EPO) 2021 2021_CU3_Hotfix_3

Affected Sectors

Commercial Facilities, Critical Manufacturing, Energy

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more