Schneider Electric Uni-Telway Driver (Update C)

MonitorCVSS 5.5ICS-CERT ICSA-25-070-01Feb 11, 2025

Schneider ElectricAVEVAEnergy

Attack path

Attack VectorLocal

Auth RequiredLow

ComplexityLow

User InteractionNone needed

Summary

Schneider Electric has identified a vulnerability in the Uni-Telway driver component used in EcoStruxure™ Control Expert, EcoStruxure™ Process Expert, EcoStruxure™ Process Expert for AVEVA System Platform, and OPC Factory Server. The vulnerability is caused by improper input validation (CWE-20) and could allow an attacker with local access to trigger a denial of service condition affecting the availability of the engineering workstation. This could interrupt engineering operations and prevent technicians from making necessary configuration changes or troubleshooting control system issues.

What this means

What could happen

An attacker with local access to an engineering workstation could trigger a denial of service condition that disrupts the availability of that workstation, preventing engineers from performing control system configuration, monitoring, or troubleshooting activities.

Who's at risk

This vulnerability affects Schneider Electric engineering workstations and control system configuration tools used in energy sector operations. Specifically, it impacts users of EcoStruxure™ Control Expert, EcoStruxure™ Process Expert, EcoStruxure™ Process Expert for AVEVA System Platform, and OPC Factory Server who perform PLC/controller programming, troubleshooting, or system configuration activities. Any facility using these tools for Modicon PLC programming is potentially affected.

How it could be exploited

An attacker with local access to a Windows engineering workstation running the Uni-Telway driver could send a specially crafted input to the driver component that causes it to crash or become unresponsive. This would render the workstation unavailable for engineering operations until the system is restarted.

Prerequisites

- Local access to the engineering workstation (either physical access or user-level login credentials) - The Uni-Telway driver component must be installed and active on the workstation - Engineering software (EcoStruxure Control Expert, Process Expert, or OPC Factory Server) running with the vulnerable driver

- No patch available for most affected products (end-of-life products) - Affects engineering/operator workstations (potential operational disruption if engineering support is needed during an emergency) - Requires local access (lowers but does not eliminate risk in environments with shared workstations or contractor access) - Low complexity to exploit

Exploitability

Unlikely to be exploited — EPSS score 0.1%

Affected products (5)

1 pending4 EOL

ProductAffected VersionsFix Status

EcoStruxure™ Process Expert for AVEVA System Platform All versionsAll versionsNo fix (EOL)

Uni-Telway driver All versionsAll versionsNo fix (EOL)

EcoStruxure™ Control Expert All versionsAll versionsNo fix (EOL)

EcoStruxure™ Process Expert All versionsAll versionsNo fix yet

OPC Factory Server All versionsAll versionsNo fix (EOL)

Remediation & Mitigation

0/6

Do now

0/4

HARDENINGRestrict local and remote access to engineering workstations to authorized personnel only; implement physical access controls to prevent unauthorized workstation use

HARDENINGNever connect programming workstations or engineering software to any network other than the isolated control system engineering network; disconnect from the business/corporate network

HARDENINGScan all removable media (USB drives, CDs, external hard drives) with antivirus software before connecting to engineering workstations

HARDENINGDo not allow personal mobile devices or devices that have connected to other networks to access the engineering workstation network without proper vetting

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXApply the available mitigation patch for EcoStruxure™ Process Expert when released by Schneider Electric

Mitigations - no patch available

0/1

The following products have reached End of Life with no planned fix: EcoStruxure™ Process Expert for AVEVA System Platform All versions, Uni-Telway driver All versions, EcoStruxure™ Control Expert All versions, OPC Factory Server All versions. Apply the following compensating controls:

HARDENINGImplement network segmentation to isolate the engineering workstation network from the business network with a firewall

CVEs (1)

CVE-2024-10083

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/a9ac9449-0e3a-4b1d-9e6d-c34fe8960599

Get OT security insights every Tuesday

Advisory breakdowns, a weekly summary, and incident analyses for the people actually defending OT environments. Free, no account required.