Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

Schneider ELectric — Vulnerabilities & Security Advisories 291

Browse all 291 CVE security advisories affecting Schneider ELectric. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Schneider Electric operates as a global specialist in energy management and industrial automation, providing critical infrastructure solutions for data centers, buildings, and manufacturing facilities. Its extensive product portfolio, including programmable logic controllers and supervisory control and data acquisition systems, has historically been associated with a significant volume of vulnerabilities, currently totaling 287 Common Vulnerabilities and Exposures. These security flaws frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from legacy protocols or default configurations in industrial control interfaces. While the company has implemented various security patches and guidelines, the sheer scale of its connected ecosystem presents persistent attack surfaces. Notable incidents have highlighted risks in unpatched firmware and weak authentication mechanisms within its EcoStruxure platform, underscoring the critical need for rigorous network segmentation and continuous monitoring to mitigate potential disruptions to essential operational technology environments.

Top products by Schneider ELectric: StruxureWare Data Center Expert IGSS Data Server (IGSSdataServer.exe) PowerChute™ Serial Shutdown EcoStruxure Control Expert Modicon M340 CPU (part numbers BMXP34*) IGSS Data Server(IGSSdataServer.exe) Modicon Controllers M241/M251 OPC UA Modicon Communication Module EcoStruxure™ IT Data Center Expert EcoStruxure Operator Terminal Expert EcoStruxure™ Power Monitoring Expert (PME) Sage 1410 Data Center Expert Wiser Smart Wonderware Information Server Portal ClearSCADA EVLink WallBox APC Easy UPS Online Monitoring Software StruxureWare Data Center Expert ASCO 5310 Single-Channel Remote Annunciator EcoStruxure Power Commission Easergy P5 Easergy Studio Trio Q Licensed Data Radio Saitel DR RTU Conext™ ComBox Easergy T200 (Modbus) Models: T200I, T200E, T200P, T200S, T200H Modicon Controllers M241 / M251 EcoStruxure Power Monitoring Expert (PME) C-Bus Toolkit
CVE IDTitleCVSSSeverityPublished
CVE-2024-8935 Schneider Electric Modicon M340 安全漏洞 — Modicon M340 CPU (part numbers BMXP34*)CWE-290 7.5 High2024-11-13
CVE-2024-8933 Schneider Electric Modicon M340 安全漏洞 — Modicon M340 CPU (part numbers BMXP34*)CWE-924 7.5 High2024-11-13
CVE-2024-8070 Schneider Electric EVlink Home Smart和Schneider Charge 安全漏洞 — EVlink Home SmartCWE-312 8.5 High2024-10-13
CVE-2024-8530 Schneider Electric Data Center Expert 访问控制错误漏洞 — Data Center ExpertCWE-306 5.9 Medium2024-10-11
CVE-2024-8531 Schneider Electric Data Center Expert 数据伪造问题漏洞 — Data Center ExpertCWE-347 7.2 High2024-10-11
CVE-2024-9002 Schneider Electric Easergy Studio 安全漏洞 — Easergy StudioCWE-269 7.8 High2024-10-11
CVE-2024-8884 Schneider Electric System Monitor application 信息泄露漏洞 — System Monitor application in Harmony Industrial PC HMIBMO/HMIBMI/HMIPSO/HMIBMP/HMIBMU/HMIPSP/HMIPEP seriesCWE-200 9.8 Critical2024-10-08
CVE-2024-9005 Schneider Electric EcoStruxure Power Monitoring Expert 代码问题漏洞 — EcoStruxure Power Monitoring Expert (PME)CWE-502 9.8AICriticalAI2024-10-08
CVE-2024-8518 Schneider Electric Zelio Soft 输入验证错误漏洞 — Zelio Soft 2CWE-20 3.3 Low2024-10-08
CVE-2024-8422 Schneider Electric Zelio Soft 资源管理错误漏洞 — Zelio Soft 2CWE-416 7.8 High2024-10-08
CVE-2024-8306 Schneider Electric Vijeo Designer 安全漏洞 — Vijeo DesignerCWE-269 7.8 High2024-09-11
CVE-2024-6918 Schneider Electric Accutech Manager 安全漏洞 — Accutech ManagerCWE-120 7.5 High2024-08-20
CVE-2024-6407 Schneider Electric Wiser Home Controller WHC-5918A 信息泄露漏洞 — Wiser Home Controller WHC-5918ACWE-200 9.8 Critical2024-07-11
CVE-2024-6528 Schneider Electric Modicon Controllers 跨站脚本漏洞 — Modicon Controllers M241 / M251CWE-79 5.4 Medium2024-07-11
CVE-2024-2602 Schneider Electric FoxRTU Station 路径遍历漏洞 — FoxRTU StationCWE-22 7.3 High2024-07-11
CVE-2024-5681 Schneider Electric EcoStruxure Foxboro DCS 输入验证错误漏洞 — EcoStruxure Foxboro DCS Core Control ServicesCWE-20 7.8 High2024-07-11
CVE-2024-5680 Schneider Electric EcoStruxure Foxboro DCS 输入验证错误漏洞 — EcoStruxure Foxboro DCS Core Control ServicesCWE-129 7.1 High2024-07-11
CVE-2024-5679 EcoStruxure Foxboro DCS Core Control Services 缓冲区错误漏洞 — EcoStruxure Foxboro DCS Core Control ServicesCWE-787 7.1 High2024-07-11
CVE-2024-0865 Schneider Electric EcoStruxure IT Gateway 信任管理问题漏洞 — EcoStruxure IT GatewayCWE-798 7.8 High2024-06-12
CVE-2024-5559 Schneider Electric PowerLogic 安全漏洞 — PowerLogic P5CWE-327 6.1 Medium2024-06-12
CVE-2024-2747 Schneider Electric Easergy Studio 代码问题漏洞 — Easergy StudioCWE-428 7.8 High2024-06-12
CVE-2024-37040 Schneider Electric SAGE RTUs 安全漏洞 — Sage 1410CWE-120 5.4 Medium2024-06-12
CVE-2024-37039 Schneider Electric SAGE RTUs 安全漏洞 — Sage 1410CWE-252 5.9 Medium2024-06-12
CVE-2024-37038 Schneider Electric SAGE RTUs 安全漏洞 — Sage 1410CWE-276 7.5 High2024-06-12
CVE-2024-37037 Schneider Electric SAGE RTUs 路径遍历漏洞 — Sage 1410CWE-22 8.1 High2024-06-12
CVE-2024-37036 Schneider Electric SAGE RTUs 缓冲区错误漏洞 — Sage 1410CWE-787 9.8 Critical2024-06-12
CVE-2024-5560 Schneider Electric SAGE RTUs 缓冲区错误漏洞 — Sage 1410CWE-125 5.3 Medium2024-06-12
CVE-2024-5557 Schneider Electric SpaceLogic AS-P 日志信息泄露漏洞 — SpaceLogic AS-PCWE-532 4.5 Medium2024-06-12
CVE-2024-5558 Schneider Electric SpaceLogic AS-P 安全漏洞 — SpaceLogic AS-PCWE-367 6.4 Medium2024-06-12
CVE-2024-5313 Schneider Electric EVlink Home Smart 安全漏洞 — EVlink Home SmartCWE-668 6.5 Medium2024-06-12

This page lists every published CVE security advisory associated with Schneider ELectric. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.