THREAT OPS › Threat News › Schneider Electric PowerChute Serial Shutdown
Schneider Electric PowerChute Serial Shutdown
<p><a href="https://github.com/cisagov/CSAF/blob/develop/csaf_files/OT/white/2026/icsa-26-190-02.json"><strong>View CSAF</strong></a></p> <h2>Summary</h2> <p><strong>Successful exploitation of these vulnerabilities could allow attackers to overwrite critical files, forge or inject malicious log data, gain unauthorized account access, trigger denial‑of‑service conditions, truncate or alter logging
MITRE ATT&CK techniques
Indicators of compromise
- CVE-2026-2399cve
- CVE-2026-2404cve
- CVE-2026-2405cve
- CVE-2026-2403cve
- CVE-2026-2400cve
- CVE-2026-2401cve
- CVE-2026-2402cve
- https://www.cve.org/CVERecord?id=CVE-2026-2399url
- https://www.se.com/ww/en/download/document/SPD-PCSS_WIN_EN/url
- https://www.se.com/ww/en/download/document/SPD-PCSS_LNX_EN/url
- https://download.schneider-electric.com/files?p_Doc_Ref=SPD_CCON-PCSSSH_ENurl
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-104-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2026-104-01.pdfurl
- https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2026-104-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=sevd-2026-104-01.jsonurl
- https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:Hurl
- https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:A/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:Nurl
- https://www.cve.org/CVERecord?id=CVE-2026-2404url
- https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:Nurl
- https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:Nurl
- https://www.cve.org/CVERecord?id=CVE-2026-2402url
- https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:Lurl
- https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:Nurl
- https://www.cve.org/CVERecord?id=CVE-2026-2405url
- https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:Lurl
- https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:Nurl
- https://www.cve.org/CVERecord?id=CVE-2026-2403url
- https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:Nurl
- https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:Nurl
- https://www.cve.org/CVERecord?id=CVE-2026-2400url
- https://www.cve.org/CVERecord?id=CVE-2026-2401url
- https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:Nurl
- https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:N/VA:N/SC:N/SI:N/SA:Nurl
Original source: https://www.cisa.gov/news-events/ics-advisories/icsa-26-190-02