ICSA-25-023-03
·
Published 2024-10-08
·
View on CISA ICS-CERT ↗
Schneider Electric EVlink Home Smart and Schneider Charge
CVSS 8.5
HIGH
CVEs (1)
Remediations
- For already connected products, version 2.0.6.0.0 of EVlink Home Smart includes a fix for this vulnerability and has been deployed to automatically upgrade all charging stations connected to the Wiser application. Make sure the charging station is connected to the Wiser application to ensure the new version is downloaded and installed. For new installations, a fix for this vulnerability is enforced through eSetup commissioning application. The installed firmware version can be verified through Wiser application (refer to the settings page for the charging station).
- For already connected products, version 1.13.4 of Schneider Charge includes a fix for this vulnerability and has been deployed to automatically upgrade all charging stations connected to the Wiser application. Make sure the charging station is connected to the Wiser application to ensure the new version is downloaded and installed. For new installations, a fix for this vulnerability is enforced through eSetup commissioning application. The installed firmware version can be verified through either Wiser application (refer to the settings page for the charging station), or the third-party supervision application.
Affected Vendors
Schneider Electric
Affected Products (4)
Schneider Electric
·
EVlink Home Smart
<2.0.6.0.0
Schneider Electric
·
EVlink Home Smart
2.0.6.0.0
Schneider Electric
·
Schneider Charge
<1.13.4
Schneider Electric
·
Schneider Charge
1.13.4
Affected Sectors
Transportation Systems
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more