The document discusses a recent software update released by Schneider Electric to address several critical vulnerabilities in their products. The vulnerabilities could be exploited by attackers to remotely execute arbitrary code, escalate privileges, or cause a denial of service. The update also includes improvements to fix potential weaknesses in the product's authentication mechanisms, data encryption, and access control
It is recommended for users to apply the patch as soon as possible to ensure the security and integrity of their systems and prevent any potential cyber attacks.https://www.cert.ssi.gouv.fr/pdf/CERTFR-2024-AVI-0358.pdf