← Back to home
ICSA-26-027-03  ·  Published 2026-01-27  ·  View on CISA ICS-CERT ↗

Schneider Electric Zigbee Products

CVSS 6.5 MEDIUM

CVEs (5)

Remediations

  • Customers should immediately apply the following mitigations to reduce the risk of exploit: To keep your Zigbee network safe and prevent unauthorized access: • Restrict device access: Do not allow unknown devices to join your network. • Review hub settings: Check how your Zigbee hub manages device pairing. • Control network availability: Only open the network when adding new devices and close it immediately after. • Use install codes and avoid the well-known key: Whenever possible, use unique install codes for added security. Replace default keys with secure, unique keys.

Affected Vendors

Schneider Electric

Affected Products (34)

Schneider Electric · Wiser iTRV2 vers:all/*
Schneider Electric · Wiser iTRV3 vers:all/*
Schneider Electric · Wiser RTR2 vers:all/*
Schneider Electric · Wiser UFH vers:all/*
Schneider Electric · Wiser 16A Electrical Heat Switch vers:all/*
Schneider Electric · Wiser Boiler Relay vers:all/*
Schneider Electric · Exxact cFMT 16a vers:all/*
Schneider Electric · Elko cFMT 16a vers:all/*
Schneider Electric · Odace cFMT 2a vers:all/*
Schneider Electric · Merten cFMT 16a vers:all/*
Schneider Electric · Merten cFMT 2a vers:all/*
Schneider Electric · Wiser Power Micromodule vers:all/*
Schneider Electric · Wiser FIP Micromodule vers:all/*
Schneider Electric · Iconic, Wiser Connected Smart Dimmer vers:all/*
Schneider Electric · Iconic, Wiser Connected Smart Switch, 2AX vers:all/*
Schneider Electric · Iconic, Wiser Connected Smart Switch, 10AX vers:all/*
Schneider Electric · Iconic, Connected AC Fan Controller vers:all/*
Schneider Electric · Iconic, Connected Smart Socket vers:all/*
Schneider Electric · Wiser Connected Application Module 1-Gang vers:all/*
Schneider Electric · Wiser Connected Application Module 2-Gang vers:all/*
Schneider Electric · Wiser Connected Push Button Dimmer vers:all/*
Schneider Electric · Wiser Connected Push Button Switch vers:all/*
Schneider Electric · Wiser Connected Push Button Shutter vers:all/*
Schneider Electric · Wiser Connected Motion Dimmer vers:all/*
Schneider Electric · Wiser Connected Motion Switch vers:all/*
Schneider Electric · Wiser Connected Rotary Dimmer vers:all/*
Schneider Electric · Connected Wireless Switch vers:all/*
Schneider Electric · Micromodule Switch vers:all/*
Schneider Electric · Micromodule Dimmer vers:all/*
Schneider Electric · Micromodule Shutter vers:all/*
Schneider Electric · Connected Single Socket Outlet vers:all/*
Schneider Electric · Connected Double Socket Outlet vers:all/*
Schneider Electric · Fuga Connected Socket Outlet vers:all/*
Schneider Electric · Mureva EV Link vers:all/*

Affected Sectors

Commercial Facilities, Critical Manufacturing, Energy, Information Technology, Transportation Systems

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more