EcoStruxureTM Foxboro DCS Core Control Services
Plan Patch7.8SEVD-2024-191-02Jul 9, 2024
Attack VectorLocal
Auth RequiredLow
ComplexityLow
User InteractionNone needed
Summary
Multiple vulnerabilities in EcoStruxureTM Foxboro DCS Core Control Services (versions up to v9.8) involving buffer overflow and improper input validation (CWE-787, CWE-129, CWE-20). An authenticated local user could exploit these to execute code or gain unauthorized access to DCS control functions, risking loss of system functionality or unauthorized command execution on critical plant control systems.
What this means
What could happen
An authenticated user on a Foxboro DCS workstation could execute code or gain unauthorized access to control functions, potentially disrupting continuous plant operation or allowing unauthorized command execution on critical control systems.
Who's at risk
Energy utilities operating EcoStruxureTM Foxboro DCS control systems for fault-tolerant distributed control. This affects the Core Control Services component used in DCS environments to manage plant operations, including process monitoring and control functions.
How it could be exploited
An attacker with local access to a workstation running Foxboro DCS Core Control Services and valid user credentials could exploit buffer overflow or input validation vulnerabilities (CWE-787, CWE-129, CWE-20) to execute arbitrary code or elevate privileges, gaining control over system functions.
Prerequisites
- Local access to workstation running Foxboro DCS Core Control Services
- Valid user account credentials for the DCS system
- Affected version installed (v9.5 to v9.8 or earlier v9.x releases)
Affects safety-critical DCS control systemRequires authenticated access (mitigates risk)Buffer overflow and input validation vulnerabilitiesLocal exploitation only (mitigates risk)
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (2)
2 with fix
ProductAffected VersionsFix Status
EcoStruxureTM Foxboro DCS Core Control Services≤ 9.8HF97872598
EcoStruxureTM Foxboro DCS Core Control Servicesv9.5 to v9.8HF97872598
Remediation & Mitigation
0/2
Schedule — requires maintenance window
0/2Patching may require device reboot — plan for process interruption
EcoStruxureTM Foxboro DCS Core Control Services
HOTFIXApply Schneider Electric hotfix HF97872598 to EcoStruxureTM Foxboro DCS Core Control Services v9.5 through v9.8
All products
HOTFIXContact Schneider Electric Process Automation Global Customer Support Center to obtain and deploy hotfix HF97872598
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/6a8d9f68-2e69-416e-8fa5-65e51f8cae5f