PowerLogic ION7400 / PM8000 / ION9000 Power Meters
Act Now9.8SEVD-2021-068-02Mar 9, 2021
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary
A buffer overflow vulnerability in Schneider Electric PowerLogic ION7400, PM8000, and ION9000 power meters allows remote code execution or device reboot without authentication. These meters are used for revenue metering and power quality monitoring in utility and industrial electrical networks. An attacker with network access can send a specially crafted packet to exploit the vulnerability and run arbitrary commands on the affected device.
What this means
What could happen
An attacker with network access to a PowerLogic meter could reboot the device or execute arbitrary code, potentially interrupting power measurements, affecting billing accuracy, or disrupting energy monitoring that utility and industrial operators depend on.
Who's at risk
Utility and industrial operators who monitor electrical networks using Schneider Electric PowerLogic ION7400, ION9000, or PM8000 revenue and power quality meters are affected. This includes electric utilities billing customers, industrial facilities tracking energy consumption, and any organization relying on these meters for operational monitoring and revenue assurance.
How it could be exploited
An attacker sends a specially crafted network packet to the meter over the network. The packet exploits a buffer overflow vulnerability that allows the attacker to run commands directly on the meter without needing to authenticate first. This could alter or stop the meter's operation.
Prerequisites
- Network access to the affected meter on its operational network or port
- No authentication required—the vulnerability can be exploited by any attacker with network reach to the device
Remotely exploitableNo authentication requiredLow complexity attackBuffer overflow (CWE-119)High CVSS score (9.8)No patch available for ION7400 and PM8000
Exploitability
Moderate exploit probability (EPSS 2.3%)
Affected products (3)
1 with fix2 EOL
ProductAffected VersionsFix Status
ION9000 All<3.0.03.0.0
ION7400 All<3.0.0No fix (EOL)
PM8000 All<3.0.0No fix (EOL)
Remediation & Mitigation
0/5
Do now
0/1WORKAROUNDFor ION7400 and PM8000 units where no patch is available, deploy firewall rules to block unauthorized network access to the meter management interfaces
Schedule — requires maintenance window
0/3Patching may require device reboot — plan for process interruption
HOTFIXUpgrade ION9000 to firmware version 3.0.0 or later
HOTFIXUpgrade ION7400 to firmware version 3.0.0 or later (noting this device may not receive further updates after 3.0.0)
HOTFIXUpgrade PM8000 to firmware version 3.0.0 or later (noting this device may not receive further updates after 3.0.0)
Mitigations - no patch available
0/1The following products have reached End of Life with no planned fix: ION7400 All, PM8000 All. Apply the following compensating controls:
HARDENINGImplement network segmentation to isolate PowerLogic meters on a dedicated VLAN or management network; restrict inbound network access to authorized engineering workstations and SCADA systems only
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/9bc95498-2ede-4d0d-80d4-b9638a0a6dd4