← Back to home
ICSA-25-266-03  ·  Published 2025-09-09  ·  View on CISA ICS-CERT ↗

Schneider Electric SESU

CVSS 7.3 HIGH

CVEs (1)

Remediations

  • Version 3.0.12 of SESU includes a fix for this vulnerability and is available for download here: https://www.seupdate.schneiderelectric.com/download/SystemConsistency/Soft wareUpdate/SESU_latest_version/SESU_latest _setup_sfx.exe Follow the installation instructions. If a predecessor version of SESU is already installed, then the update to V3.0.12 will be done automatically as a critical update in the background depending on the “automatic” update configuration.
  • If customers choose not to apply the remediation provided above, they should immediately apply the following mitigations to reduce the risk of exploit: SESU Installation Directory (chosen by the customer at installation time) should not be accessible from the network and only by trusted persons.

Affected Vendors

Schneider Electric

Affected Products (2)

Schneider Electric · SESU <3.0.12
Schneider Electric · SESU 3.0.12

Affected Sectors

Chemical, Commercial Facilities, Critical Manufacturing, Energy, Healthcare and Public Health, Information Technology, Transportation Systems, Water and Wastewater Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more