Schneider Electric 厂商漏洞列表 / CVE 中文分析 287

Schneider Electric 厂商相关 287 条 CVE 漏洞，含 AI 中文分析、POC、CVSS 评分与受影响产品。

施耐德电气专注于能源管理与自动化领域，提供工业控制及楼宇控制系统。其软件产品历史漏洞多涉及远程代码执行、身份验证绕过及跨站脚本，常因配置不当或组件缺陷引发。近期安全事件凸显了关键基础设施面临的供应链风险，促使厂商加强固件签名验证与补丁分发机制。鉴于其广泛部署于电网及工厂，任何漏洞均可能影响物理安全，建议用户及时更新并实施网络隔离策略以缓解潜在威胁。

Top products by Schneider Electric: StruxureWare Data Center Expert PowerChute™ Serial Shutdown IGSS Data Server (IGSSdataServer.exe) IGSS Data Server(IGSSdataServer.exe) EcoStruxure Control Expert Modicon M340 CPU (part numbers BMXP34*) OPC UA Modicon Communication Module Modicon Controllers M241/M251 Sage 1410 EcoStruxure Operator Terminal Expert EcoStruxure™ IT Data Center Expert Data Center Expert EcoStruxure™ Power Monitoring Expert (PME) Wiser Smart Wonderware Information Server Portal ClearSCADA ASCO 5310 Single-Channel Remote Annunciator APC Easy UPS Online Monitoring Software EVLink WallBox EcoStruxure Power Commission Easergy P5 StruxureWare Data Center Expert EcoStruxure Foxboro DCS Core Control Services Enerlin’X IFE interface (LV434001) Trio Q Licensed Data Radio Conext™ ComBox C-Bus Toolkit Easergy Studio NetBotz 4 - 355/450/455/550/570 APC Easy UPS Online Monitoring Software (Windows 10, 11 Windows Server 2016, 2019, 2022)

CVEs 287

CVE ID	标题	CVSS	风险等级	Published
CVE-2026-2401	Schneider Electric PowerChute Serial Shutdown 日志信息泄露漏洞 — PowerChute™ Serial ShutdownCWE-532	6.5	-	2026-04-14
CVE-2026-2400	Schneider Electric PowerChute Serial Shutdown 注入漏洞 — PowerChute™ Serial ShutdownCWE-93	4.5	-	2026-04-14
CVE-2026-2403	Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-1284	2.7	-	2026-04-14
CVE-2026-2405	Schneider Electric PowerChute Serial Shutdown 资源管理错误漏洞 — PowerChute™ Serial ShutdownCWE-400	6.5	-	2026-04-14
CVE-2026-2402	Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-307	9.8	-	2026-04-14
CVE-2026-2404	Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-116	7.5	-	2026-04-14
CVE-2026-2399	Schneider Electric PowerChute Serial Shutdown 路径遍历漏洞 — PowerChute™ Serial ShutdownCWE-22	6.5	-	2026-04-14
CVE-2026-4832	Schneider Electric多款产品信任管理问题漏洞 — Easergy MiCOM P14xCWE-798	7.5	-	2026-04-14
CVE-2026-2273	Schneider Electric EcoStruxure Automation Expert 代码注入漏洞 — EcoStruxure™ Automation ExpertCWE-94	7.8^AI	High^AI	2026-03-10
CVE-2026-1286	Schneider Electric EcoStruxure Foxboro DCS 代码问题漏洞 — EcoStruxure™ Foxboro DCSCWE-502	7.8^AI	High^AI	2026-03-10
CVE-2025-13902	Schneider Electric多款产品跨站脚本漏洞 — Modicon Controllers M241/M251CWE-79	5.4^AI	Medium^AI	2026-03-10
CVE-2025-13901	Schneider Electric多款产品安全漏洞 — Modicon M241/M251CWE-404	5.3^AI	Medium^AI	2026-03-10
CVE-2025-11739	Schneider Electric EcoStruxure Power Monitoring Expert和Schneider Electric EcoStruxure Power Operation（Schneider Electric EPO）代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-502	7.8^AI	High^AI	2026-03-10
CVE-2025-13957	Schneider Electric EcoStruxure IT Data Center Expert 信任管理问题漏洞 — EcoStruxure™ IT Data Center Expert (Formerly known as StruxureWare Data Center Expert)CWE-798	9.8^AI	Critical^AI	2026-03-10
CVE-2026-1226	Schneider Electric EcoStruxure Building Operation Workstation 代码注入漏洞 — EcoStruxure Building Operation WorkstationCWE-94	7.8^AI	High^AI	2026-02-11
CVE-2026-1227	Schneider Electric EcoStruxure Building Operation Workstation 代码问题漏洞 — EcoStruxure Building Operation WorkstationCWE-611	7.8^AI	High^AI	2026-02-11
CVE-2025-13905	Schneider Electric EcoStruxure Process Expert 安全漏洞 — EcoStruxure™ Process ExpertCWE-276	7.8^AI	High^AI	2026-01-29
CVE-2025-13845	Schneider Electric EcoStruxure Power Build Rapsody 资源管理错误漏洞 — EcoStruxure Power Build RapsodyCWE-416	7.8^AI	High^AI	2026-01-15
CVE-2025-13844	Schneider Electric EcoStruxure Power Build Rapsody 资源管理错误漏洞 — EcoStruxure Power Build RapsodyCWE-415	7.8^AI	High^AI	2026-01-15
CVE-2025-11567	Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-276	8.4	-	2025-11-12
CVE-2025-11566	Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-307	7.8	-	2025-11-12
CVE-2025-11565	Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-22	6.8	-	2025-11-12
CVE-2025-9997	Schneider Electric Saitel DR RTU 操作系统命令注入漏洞 — Saitel DR RTUCWE-78	8.0^AI	High^AI	2025-09-09
CVE-2025-9996	Schneider Electric Saitel DR RTU 操作系统命令注入漏洞 — Saitel DR RTUCWE-78	8.8^AI	High^AI	2025-09-09
CVE-2025-7746	Schneider Electric ATV Series 跨站脚本漏洞 — ATV630/650/660/680/6A0/6B0/6L0 Altivar Process DrivesCWE-79	6.1^AI	Medium^AI	2025-09-09
CVE-2025-54927	Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 路径遍历漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-22	4.9	Medium	2025-08-20
CVE-2025-54926	Schneider Electric EcoStruxure Power Monitoring Expert和Schneider Electric EcoStruxure Power Operation 路径遍历漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-22	7.2	High	2025-08-20
CVE-2025-54925	Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-918	7.5	High	2025-08-20
CVE-2025-54924	Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-918	7.5	High	2025-08-20
CVE-2025-54923	Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-502	8.8^AI	High^AI	2025-08-20

本页汇总了 Schneider Electric 厂商截至目前公开的全部 287 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接，并附带 AI 生成的中文分析以便快速判断风险。

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

Schneider Electric 厂商漏洞列表 / CVE 中文分析 287

目标达成感谢每一位支持者 — 我们达成了 100% 目标！