Schneider Electric EasyLogic T150 and Saitel DP RTU
Summary
Vulnerabilities in Schneider Electric EasyLogic T150 and Saitel DP RTU devices (versions <=11.06.30/31 and <=11.06.35/37 respectively) allow unauthorized access and exposure of sensitive information. The flaws, specifically CVE-2026-9650 and CVE-2026-9651, stem from insufficiently protected credentials and incorrect permission assignment for critical resources. Exploitation could lead to device compromise, particularly with physical access to extract stored credentials.
IFF Assessment
The article details critical vulnerabilities in industrial control systems that could lead to unauthorized access and device compromise, increasing risk for critical infrastructure operators.
Severity
The CVSS score of 7.5 is assigned due to the Insufficiently Protected Credentials vulnerability (CWE-522) which allows an unauthenticated attacker to access sensitive information. This could lead to full device compromise, especially with physical access, posing a significant risk to critical infrastructure sectors.
Defender Context
Defenders operating in critical manufacturing and energy sectors must identify affected Schneider Electric EasyLogic T150 and Saitel DP RTU devices within their operational technology (OT) environments. Immediate application of vendor fixes and remediation steps is crucial to prevent unauthorized access and potential compromise. Additionally, reviewing physical security measures around these devices is important, as physical access can exacerbate the risk of exploitation by allowing attackers to extract credentials.