ICSA-25-037-01
·
Published 2025-05-13
·
View on CISA ICS-CERT ↗
Schneider Electric EcoStruxure Power Monitoring Expert (PME) (Update B)
CVSS 7.1
HIGH
CVEs (1)
Remediations
- Hotfix_75031_PME2022 available for EcoStruxure™ Power Monitoring Expert (PME) that includes a fix for this vulnerability. Contact Schneider Electric’s Customer Care Center https://www.se.com/us/en/work/support/ to download this hotfix.
- If customers choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploit. EcoStruxure™ Power Monitoring Expert 2021 and prior have reached end-of-life support. Customers should consider upgrading to the latest version offering of PME to resolve this issue. Please contact Schneider Electric Customer Care Center https://www.se.com/us/en/work/support/ for more details.
Affected Vendors
Schneider Electric
Affected Products (3)
Schneider Electric
·
EcoStruxure Power Monitoring Expert (PME)
2022
Schneider Electric
·
EcoStruxure Power Monitoring Expert (PME)
<=2021
Schneider Electric
·
EcoStruxure Power Monitoring Expert (PME)
Hotfix_75031_PME2022
Affected Sectors
Commercial Facilities, Critical Manufacturing, Energy
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more