Improper Check for Unusual or Exceptional Conditions on Multiple Products
Act Now9.8SEVD-2026-041-01Feb 10, 2026
Attack VectorNetwork
Auth RequiredNone
ComplexityLow
User InteractionNone needed
Summary
Improper check for unusual or exceptional conditions in SCADAPack 47x, 47xi, and 57x Remote Terminal Units, and RemoteConnect software. These products provide remote monitoring and control communication capabilities for utilities. The vulnerability allows unauthorized access to the RTU without authentication requirements, risking denial of service and loss of confidentiality and integrity of the controller.
What this means
What could happen
An attacker could gain unauthorized remote access to your RTU without credentials, potentially stopping remote monitoring and control operations or altering critical setpoints and measurements in your distribution system.
Who's at risk
Electric and water utilities operating Schneider Electric SCADAPack 47x, 47xi, or 57x Remote Terminal Units (RTUs) in distribution automation, substation monitoring, or remote terminal operations should prioritize remediation. Also affects organizations using RemoteConnect software for RTU management and monitoring.
How it could be exploited
An attacker sends a specially crafted network packet to the RTU's communication port (typically port 502 for Modbus or proprietary Schneider protocols). The RTU fails to properly validate the request conditions, allowing the attacker to execute commands or access sensitive data without authentication.
Prerequisites
- Network access to the RTU on its communication port
- No authentication credentials required
remotely exploitableno authentication requiredlow complexityhigh CVSS score (9.8)affects critical OT devices (RTUs)
Affected products (4)
4 with fix
ProductAffected VersionsFix Status
SCADAPack™ 47x< 9.12.29.12.2
SCADAPack™ 47xi< 9.12.29.12.2
SCADAPack™ 57x All VersionsAll versions9.12.2
RemoteConnect< R3.4.2R3.4.2
Remediation & Mitigation
0/6
Do now
0/5RemoteConnect
HOTFIXUpdate RemoteConnect to version R3.4.2 or later
All products
HOTFIXUpdate SCADAPack 47x to firmware version 9.12.2 or later
HOTFIXUpdate SCADAPack 47xi to firmware version 9.12.2 or later
HOTFIXUpdate SCADAPack 57x to firmware version 9.12.2 or later
WORKAROUNDRestrict network access to RTU communication ports using firewall rules; allow only authorized monitoring/control workstations
Long-term hardening
0/1HARDENINGImplement network segmentation to isolate RTUs from untrusted networks and the internet
CVEs (1)
↑↓ Navigate · Esc Close
API:
/api/v1/advisories/86d5bc57-b2dc-492e-80a9-a75bb43fbedf