Improper Input Validation Vulnerability in Uni-Telway Driver
Monitor5.5SEVD-2025-042-02Feb 11, 2025
Attack VectorLocal
Auth RequiredLow
ComplexityLow
User InteractionNone needed
Summary
A vulnerability in the Uni-Telway driver component of Schneider Electric EcoStruxure™ and OPC Factory Server products fails to properly validate input data. An attacker with local user access to an engineering workstation could send malformed data to the Uni-Telway driver, causing a denial of service that renders the workstation unresponsive. This impacts the availability of engineering operations and configuration management. The vulnerability affects all current versions of the Uni-Telway driver, EcoStruxure™ Control Expert, EcoStruxure™ Process Expert, and OPC Factory Server.
What this means
What could happen
An attacker with local access to an engineering workstation could cause it to become unresponsive, interrupting engineering operations and preventing updates or changes to industrial control logic.
Who's at risk
Engineering teams and system integrators at energy utilities, water authorities, and manufacturing facilities who use Schneider Electric EcoStruxure™ Control Expert, EcoStruxure™ Process Expert, or OPC Factory Server for PLC programming and process control configuration should be aware that local denial of service is possible on these engineering workstations.
How it could be exploited
An attacker with local user credentials on the engineering workstation sends malformed input to the Uni-Telway driver through EcoStruxure™ software. The driver fails to validate the input, triggering a denial of service condition that freezes or crashes the engineering workstation.
Prerequisites
- Local access to the engineering workstation running affected EcoStruxure or OPC Factory Server software
- Valid user-level credentials on the workstation
- Network access not required—this is a local privilege escalation/DoS vector
No patch availableAffects engineering/SCADA softwareLocal attack vector only (lower risk than remote)Low exploit probability (0.1% EPSS)
Exploitability
Low exploit probability (EPSS 0.1%)
Affected products (5)
5 EOL
ProductAffected VersionsFix Status
EcoStruxure™ Process Expert for AVEVA System Platform All versionsAll versionsNo fix (EOL)
Uni-Telway driver All versionsAll versionsNo fix (EOL)
EcoStruxure™ Control Expert All versionsAll versionsNo fix (EOL)
EcoStruxure™ Process Expert All versionsAll versionsNo fix (EOL)
OPC Factory Server All versionsAll versionsNo fix (EOL)
Remediation & Mitigation
0/7
Do now
0/1WORKAROUNDScan all removable media (USB drives, CDs, external drives) with updated antivirus before use on control system workstations
Schedule — requires maintenance window
0/1Patching may require device reboot — plan for process interruption
WORKAROUNDIf remote access to engineering workstations is required, use a secure VPN connection and keep VPN software updated
Mitigations - no patch available
0/5The following products have reached End of Life with no planned fix: EcoStruxure™ Process Expert for AVEVA System Platform All versions, Uni-Telway driver All versions, EcoStruxure™ Control Expert All versions, EcoStruxure™ Process Expert All versions, OPC Factory Server All versions. Apply the following compensating controls:
HARDENINGIsolate control and safety system networks and engineering workstations from the business network using firewalls
HARDENINGRestrict physical access to engineering workstations and controllers with locked cabinets and access control
HARDENINGDo not connect programming workstations or software to any network other than the dedicated control system network
HARDENINGPrevent mobile devices from connecting to control system networks unless they have been isolated and verified clean
HARDENINGEnsure engineering workstations and control system devices are not accessible from the Internet or untrusted networks
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/5c0c4eb8-1945-4e92-a66f-9d5f25847fac