CVE-2026-0667

Name of the Vulnerable Software and Affected Versions Schneider Electric SCADAPack 47xi, SCADAPack 47x and SCADAPack 57x (affected versions not specified)

Description A flaw exists in the firmware of Schneider Electric industrial controllers. This issue involves insufficient validation of unusual or exceptional conditions. Successful exploitation could allow a remote attacker to compromise the confidentiality, integrity, and availability of protected information. The vulnerability could allow for unauthorized code execution over Modbus TCP.

Recommendations Update to firmware version 9.12.2 (R3.4.2). Implement network segmentation. Use an RTU firewall.