"Serious Vulnerabilities Found in Schneider Electric Power Meters"

The industrial cybersecurity firm Claroty recently shared details about two potentially critical vulnerabilities discovered in Schneider Electric's PowerLogic smart meters. The vulnerabilities affect some of Schneider Electric's PowerLogic ION and PM series smart meters, which are sold to utilities, industrial companies, data centers, and healthcare organizations. According to Claroty researchers, an unauthenticated attacker can remotely exploit the vulnerabilities found in the meters by sending specially crafted TCP packets to the device. One of the vulnerabilities has been assessed as critical because it can allow an attacker to cause the targeted meter to reboot and possibly execute arbitrary code. The other vulnerability has been assigned a high severity rating as its exploitation only forces the targeted device to reboot. This article continues to discuss the vulnerabilities impacting some of Schneider Electric's PowerLogic ION/PM smart meters.

Security Week reports "Serious Vulnerabilities Found in Schneider Electric Power Meters"