Schneider Electric Easergy MiCOM Px40 Series

Summary

Schneider Electric has identified a vulnerability in its Easergy MiCOM Px40 Series of protection relays. The flaw, a use of hard-coded credentials, could allow an unauthenticated attacker to gain unauthorized access to sensitive device information via the SNMP protocol. This vulnerability affects numerous versions of the Px40 series products deployed worldwide across critical infrastructure sectors.

IFF Assessment

FOE

The vulnerability allows for unauthorized exposure of basic device identification, which could be a stepping stone for further attacks on critical infrastructure.

Severity

5.3 Medium

The CVSS v3 score of 5.3 reflects a moderate severity, indicating that the vulnerability involves the 'Use of Hard-coded Credentials' which can lead to unauthorized exposure of sensitive device information when interrogated via SNMP.

Defender Context

This alert highlights a critical vulnerability in industrial control systems (ICS) used in energy and manufacturing sectors. Defenders should prioritize reviewing affected systems and applying the vendor-provided mitigations to prevent unauthorized access and potential disruption of critical operations. Organizations need to be vigilant about patching and monitoring ICS devices, especially those exposed to network services like SNMP.

Read Full Story →