Treck TCP/IP Ripple 20 Vulnerabilities Affecting Schneider Devices
Issue:
What Schneider Electric devices were affected by the Treck Inc. Ripple20 cyber vulnerabilities?
Product:
Schneider Electric Devices
Environment:
Cybersecurity
Cause:
Treck Inc. publicly disclosed 19 vulnerabilities in its embedded TCP/IP stack, collectively known as Ripple20.
These vulnerabilities vary in severity, with several capable of enabling remote code execution. Other possible impacts include:
- Privilege escalation
- Denial of service
- Information leakage
These issues arise from flaws such as improper length handling, improper input validation, out‑of‑bounds read/write, integer overflows, double free, and others, as identified in federal advisories.
Resolution:
A list of Schneider Electric devices affected by the Ripple20 vulnerabilities is available in theattached document found under the Related tab.
Recommendation:
If you are using an older version of PME, consider upgrading to the latest version for improved protocol support and security. For assistance with integration or upgrades, contact Schneider Electric Technical Support at: pmo-psup@se.com
게시 대상: 슈나이더 일렉트릭 Korea
도움이 필요하신가요?
제품 선택기
애플리케이션에 적합한 제품과 액세서리를 빠르고 쉽게 찾을 수 있습니다.
견적 받기
영업 관련하여 온라인으로 문의하시면 전문가가 연락드립니다.
구매처
해당 지역의 가장 가까운 슈나이더 일렉트릭 대리점을 쉽게 찾을 수 있습니다.
지원 센터
한 곳에서 모든 요구 사항에 대한 지원 리소스를 찾아보십시오.