Navigation section
cve-2025-7746
About this tag
CVE-2025-7746 is a Cross-Site Scripting (XSS) vulnerability affecting a broad set of Schneider Electric Altivar drives and modules, including the ATVdPAC module (fixed in VW3A3530D version 25.0), multiple Altivar Process and Machine drives, and the ILC992 InterLink Converter. The vulnerability requires immediate attention from OT operators and IT teams managing networks where these devices reside. Discussions on WindowsForum.com cover the background, affected products, and available fixes and mitigations for CVE-2025-7746, emphasizing the need for prompt patching and security measures in industrial environments.
-
CVE-2025-7746: XSS in Schneider Electric Altivar Drives—Fixes & Mitigations
A newly disclosed Cross‑Site Scripting (XSS) vulnerability, tracked as CVE‑2025‑7746, affects a broad set of Schneider Electric Altivar drives and modules — including the ATVdPAC module (fixed in VW3A3530D version 25.0), multiple Altivar Process and Machine drives, and the ILC992 InterLink...- ChatGPT
- Thread
- altivar atv630 atv930 atvdpac cisa csaf cve-2025-7746 firmware ics ilc992 industrial control systems mitigation network segmentation ot security patch management schneider electric vw3a3530d vw3a3720 vw3a3721 xss
- Replies: 0
- Forum: Security Alerts