Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Schneider Electric — Vulnerabilities & Security Advisories 287

Browse all 287 CVE security advisories affecting Schneider Electric. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Schneider Electric operates as a global specialist in energy management and industrial automation, providing critical infrastructure solutions for data centers, buildings, and manufacturing facilities. Its extensive product portfolio, including programmable logic controllers and supervisory control and data acquisition systems, has historically been associated with a significant volume of vulnerabilities, currently totaling 287 Common Vulnerabilities and Exposures. These security flaws frequently involve remote code execution, cross-site scripting, and privilege escalation, often stemming from legacy protocols or default configurations in industrial control interfaces. While the company has implemented various security patches and guidelines, the sheer scale of its connected ecosystem presents persistent attack surfaces. Notable incidents have highlighted risks in unpatched firmware and weak authentication mechanisms within its EcoStruxure platform, underscoring the critical need for rigorous network segmentation and continuous monitoring to mitigate potential disruptions to essential operational technology environments.

Top products by Schneider Electric: StruxureWare Data Center Expert PowerChute™ Serial Shutdown IGSS Data Server (IGSSdataServer.exe) IGSS Data Server(IGSSdataServer.exe) EcoStruxure Control Expert Modicon M340 CPU (part numbers BMXP34*) OPC UA Modicon Communication Module Modicon Controllers M241/M251 Sage 1410 EcoStruxure Operator Terminal Expert EcoStruxure™ IT Data Center Expert Data Center Expert EcoStruxure™ Power Monitoring Expert (PME) Wiser Smart Wonderware Information Server Portal ClearSCADA ASCO 5310 Single-Channel Remote Annunciator APC Easy UPS Online Monitoring Software EVLink WallBox EcoStruxure Power Commission Easergy P5 StruxureWare Data Center Expert EcoStruxure Foxboro DCS Core Control Services Enerlin’X IFE interface (LV434001) Trio Q Licensed Data Radio Conext™ ComBox C-Bus Toolkit Easergy Studio NetBotz 4 - 355/450/455/550/570 APC Easy UPS Online Monitoring Software (Windows 10, 11 Windows Server 2016, 2019, 2022)
CVE IDTitleCVSSSeverityPublished
CVE-2026-2401 Schneider Electric PowerChute Serial Shutdown 日志信息泄露漏洞 — PowerChute™ Serial ShutdownCWE-532 6.5 -2026-04-14
CVE-2026-2400 Schneider Electric PowerChute Serial Shutdown 注入漏洞 — PowerChute™ Serial ShutdownCWE-93 4.5 -2026-04-14
CVE-2026-2403 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-1284 2.7 -2026-04-14
CVE-2026-2405 Schneider Electric PowerChute Serial Shutdown 资源管理错误漏洞 — PowerChute™ Serial ShutdownCWE-400 6.5 -2026-04-14
CVE-2026-2402 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-307 9.8 -2026-04-14
CVE-2026-2404 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-116 7.5 -2026-04-14
CVE-2026-2399 Schneider Electric PowerChute Serial Shutdown 路径遍历漏洞 — PowerChute™ Serial ShutdownCWE-22 6.5 -2026-04-14
CVE-2026-4832 Schneider Electric多款产品 信任管理问题漏洞 — Easergy MiCOM P14xCWE-798 7.5 -2026-04-14
CVE-2026-2273 Schneider Electric EcoStruxure Automation Expert 代码注入漏洞 — EcoStruxure™ Automation ExpertCWE-94 7.8AIHighAI2026-03-10
CVE-2026-1286 Schneider Electric EcoStruxure Foxboro DCS 代码问题漏洞 — EcoStruxure™ Foxboro DCSCWE-502 7.8AIHighAI2026-03-10
CVE-2025-13902 Schneider Electric多款产品 跨站脚本漏洞 — Modicon Controllers M241/M251CWE-79 5.4AIMediumAI2026-03-10
CVE-2025-13901 Schneider Electric多款产品 安全漏洞 — Modicon M241/M251CWE-404 5.3AIMediumAI2026-03-10
CVE-2025-11739 Schneider Electric EcoStruxure Power Monitoring Expert和Schneider Electric EcoStruxure Power Operation(Schneider Electric EPO) 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-502 7.8AIHighAI2026-03-10
CVE-2025-13957 Schneider Electric EcoStruxure IT Data Center Expert 信任管理问题漏洞 — EcoStruxure™ IT Data Center Expert (Formerly known as StruxureWare Data Center Expert)CWE-798 9.8AICriticalAI2026-03-10
CVE-2026-1226 Schneider Electric EcoStruxure Building Operation Workstation 代码注入漏洞 — EcoStruxure Building Operation WorkstationCWE-94 7.8AIHighAI2026-02-11
CVE-2026-1227 Schneider Electric EcoStruxure Building Operation Workstation 代码问题漏洞 — EcoStruxure Building Operation WorkstationCWE-611 7.8AIHighAI2026-02-11
CVE-2025-13905 Schneider Electric EcoStruxure Process Expert 安全漏洞 — EcoStruxure™ Process ExpertCWE-276 7.8AIHighAI2026-01-29
CVE-2025-13845 Schneider Electric EcoStruxure Power Build Rapsody 资源管理错误漏洞 — EcoStruxure Power Build RapsodyCWE-416 7.8AIHighAI2026-01-15
CVE-2025-13844 Schneider Electric EcoStruxure Power Build Rapsody 资源管理错误漏洞 — EcoStruxure Power Build RapsodyCWE-415 7.8AIHighAI2026-01-15
CVE-2025-11567 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-276 8.4 -2025-11-12
CVE-2025-11566 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-307 7.8 -2025-11-12
CVE-2025-11565 Schneider Electric PowerChute Serial Shutdown 安全漏洞 — PowerChute™ Serial ShutdownCWE-22 6.8 -2025-11-12
CVE-2025-9997 Schneider Electric Saitel DR RTU 操作系统命令注入漏洞 — Saitel DR RTUCWE-78 8.0AIHighAI2025-09-09
CVE-2025-9996 Schneider Electric Saitel DR RTU 操作系统命令注入漏洞 — Saitel DR RTUCWE-78 8.8AIHighAI2025-09-09
CVE-2025-7746 Schneider Electric ATV Series 跨站脚本漏洞 — ATV630/650/660/680/6A0/6B0/6L0 Altivar Process DrivesCWE-79 6.1AIMediumAI2025-09-09
CVE-2025-54927 Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 路径遍历漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-22 4.9 Medium2025-08-20
CVE-2025-54926 Schneider Electric EcoStruxure Power Monitoring Expert和Schneider Electric EcoStruxure Power Operation 路径遍历漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-22 7.2 High2025-08-20
CVE-2025-54925 Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-918 7.5 High2025-08-20
CVE-2025-54924 Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-918 7.5 High2025-08-20
CVE-2025-54923 Schneider Electric EcoStruxure Power Monitoring Expert和EcoStruxure Power Operation AdvancedReporting and Dashboards Module 代码问题漏洞 — EcoStruxure™ Power Monitoring Expert (PME)CWE-502 8.8AIHighAI2025-08-20

This page lists every published CVE security advisory associated with Schneider Electric. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.