CIRT.GY | [Control systems] Schneider Electric Security Adv

[Control systems] Schneider Electric Security Advisory (10th, December 2025)

Ref# ADV2025_424 | Date: Dec 12th 2025

[Control systems] Schneider Electric published a security advisory highlighting vulnerabilities in the following product on December 9th, 2025. It is recommended that you take the necessary precautions by ensuring your products are always updated.

EcoStruxure™ Foxboro DCS – version EcoStruxure™ Foxboro DCS and prior

V91 DCS Virtualization Server and H92 DCS Standard Workstation – version Intel Xeon W-2123 and prior

EcoStruxure™ Foxboro DCS Advisor services with Windows Server Update Services application running on MS Server 2016 – version Microsoft updates KB5066836

EcoStruxure™ Foxboro DCS Advisor services with Windows Server Update Services application running on MS Server 2022 – version Microsoft updates KB5066782

For more information on this update, you can follow this URL:

https://www.cyber.gc.ca/en/alerts-advisories/control-systems-schneider-electric-security-advisory-av25-825

The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.

References

[Control systems] Schneider Electric Security advisories. (December 10th, 2025). Retrieved from Canadian Centre for Cyber Security
https://www.cyber.gc.ca/en/alerts-advisories/control-systems-schneider-electric-security-advisory-av25-825

Schneider Electric. (n.d.). Security notifications. https://www.se.com/ww/en/work/support/cybersecurity/security-notifications.jsp