Multiple vulnerabilities in Schneider Electric ASCO 5310/5350 Remote Annunciator
| Risk | High |
| Patch available | NO |
| Number of vulnerabilities | 4 |
| CVE-ID | CVE-2025-1058 CVE-2025-1059 CVE-2025-1060 CVE-2025-1070 |
| CWE-ID | CWE-494 CWE-770 CWE-319 CWE-434 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
ASCO 5310 Single-Channel Remote Annunciator Hardware solutions / Firmware ASCO 5350 Eight Channel Remote Annunciator Hardware solutions / Firmware |
| Vendor | Schneider Electric |
Security Bulletin
This security bulletin contains information about 4 vulnerabilities.
1) Download of code without integrity check
EUVDB-ID: #VU105855
Risk: Medium
CVSSv4.0: 5.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-1058
CWE-ID:
CWE-494 - Download of Code Without Integrity Check
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise the affected system
The vulnerability exists due to software does not perform software integrity check when downloading updates. A remote user can supply a malicious firmware and render the device inoperable.
MitigationCybersecurity Help is currently unaware of any official solution to address this vulnerability.
Vulnerable software versionsASCO 5310 Single-Channel Remote Annunciator: All versions
ASCO 5350 Eight Channel Remote Annunciator: All versions
CPE2.3- cpe:2.3:h:schneider_electric:asco_5310_single-channel_remote_annunciator:*:*:*:*:*:*:*:*
- cpe:2.3:h:schneider_electric:asco_5350_eight_channel_remote_annunciator:*:*:*:*:*:*:*:*
https://download.schneider-electric.com/files?p_Doc_Ref=sevd-2025-042-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-042-01.pdf
https://www.cisa.gov/news-events/ics-advisories/icsa-25-077-05
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Allocation of Resources Without Limits or Throttling
EUVDB-ID: #VU105856
Risk: High
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2025-1059
CWE-ID:
CWE-770 - Allocation of Resources Without Limits or Throttling
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to perform a denial of service (DoS) attack.
The vulnerability exists due to allocation of resources without limits or throttling. A remote attacker can cause a denial of service condition on the target system.
MitigationCybersecurity Help is currently unaware of any official solution to address this vulnerability.
Vulnerable software versionsASCO 5310 Single-Channel Remote Annunciator: All versions
ASCO 5350 Eight Channel Remote Annunciator: All versions
CPE2.3- cpe:2.3:h:schneider_electric:asco_5310_single-channel_remote_annunciator:*:*:*:*:*:*:*:*
- cpe:2.3:h:schneider_electric:asco_5350_eight_channel_remote_annunciator:*:*:*:*:*:*:*:*
https://download.schneider-electric.com/files?p_Doc_Ref=sevd-2025-042-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-042-01.pdf
https://www.cisa.gov/news-events/ics-advisories/icsa-25-077-05
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Cleartext transmission of sensitive information
EUVDB-ID: #VU105857
Risk: High
CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2025-1060
CWE-ID:
CWE-319 - Cleartext Transmission of Sensitive Information
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to gain access to sensitive information.
The vulnerability exists due to software uses insecure communication channel to transmit sensitive information. A remote attacker can gain access to sensitive data.
MitigationCybersecurity Help is currently unaware of any official solution to address this vulnerability.
Vulnerable software versionsASCO 5310 Single-Channel Remote Annunciator: All versions
ASCO 5350 Eight Channel Remote Annunciator: All versions
CPE2.3- cpe:2.3:h:schneider_electric:asco_5310_single-channel_remote_annunciator:*:*:*:*:*:*:*:*
- cpe:2.3:h:schneider_electric:asco_5350_eight_channel_remote_annunciator:*:*:*:*:*:*:*:*
https://download.schneider-electric.com/files?p_Doc_Ref=sevd-2025-042-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-042-01.pdf
https://www.cisa.gov/news-events/ics-advisories/icsa-25-077-05
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Arbitrary file upload
EUVDB-ID: #VU105858
Risk: Medium
CVSSv4.0: 6.3 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2025-1070
CWE-ID:
CWE-434 - Unrestricted Upload of File with Dangerous Type
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to insufficient validation of file during file upload. A remote user can upload a malicious file and execute it on the server.
MitigationCybersecurity Help is currently unaware of any official solution to address this vulnerability.
Vulnerable software versionsASCO 5310 Single-Channel Remote Annunciator: All versions
ASCO 5350 Eight Channel Remote Annunciator: All versions
CPE2.3- cpe:2.3:h:schneider_electric:asco_5310_single-channel_remote_annunciator:*:*:*:*:*:*:*:*
- cpe:2.3:h:schneider_electric:asco_5350_eight_channel_remote_annunciator:*:*:*:*:*:*:*:*
https://download.schneider-electric.com/files?p_Doc_Ref=sevd-2025-042-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2025-042-01.pdf
https://www.cisa.gov/news-events/ics-advisories/icsa-25-077-05
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
