PME Vulnerabilities: The Need to Upgrade

Are you aware of the vulnerabilities lurking in your Power Monitoring Expert (PME) system? Schneider Electric has identified critical security flaws in PME versions 7.x – 9.0 that could allow malicious code execution, putting your entire network at risk. At APT, we take these threats seriously and recommend upgrading to the latest version to safeguard your operations. With smart devices becoming increasingly vulnerable, it’s essential to stay ahead of potential attacks. Discover how our team of EcoXperts can help you secure your critical power infrastructure and ensure trouble-free service. Don’t wait—read more to protect your systems today!

Vulnerabilities in Power Monitoring Expert

Schneider Electric, the producer of Power Monitoring Expert (PME), recently released a notification that several of their applications commonly experience multiple vulnerabilities. Schneider has identified Power Monitoring Expert versions 7.x – 9.0 as those affected. Consequently, these vulnerabilities could allow for arbitrary code execution.

In other words, they can access any executable code they wish to on your PME server. Subsequently, these vulnerabilities may qualify for the execution of malicious code, which could infect other systems.

APT’s Assessment

At APT take this vulnerability quite seriously. We rate the severity level as High. Therefore, we recommend that our customers update the latest version of Power Monitoring Expert (Version 2020) to mitigate any potential threat. Failure to do so may result in an intrusion into your PME system and the attached network.

a computer monitor is sitting on a desk with a keyboard and mouse .

New vulnerabilities are discovered regularly. APT works diligently to track these vulnerabilities and help customers keep their systems and control networks safe. Subsequently, we recommend keeping your operating systems, database services, and other applications up to date.

Further, with smart devices becoming more and more capable, these devices are themselves becoming more vulnerable to attack. These devices often run their operating system and can host malicious software that can further infect your networks.

Looking for a PME Upgrade?

APT has a solution. Applied Power Technologies team of EcoXperts have extensive experience in installing, configuring, securing, and maintaining all of your critical power infrastructures. We work as an integral part of your team to define your system requirements and build a comprehensive monitoring solution that will provide trouble-free service.

Rick Deming, APT Senior Systems Engineer

Share the Post:

Your IR Scanning Program Is Compliant — Until It Isn’t

For decades, annual infrared thermography inspections were merely a best practice — but as of January 1, 2023, they are now a mandatory requirement under NFPA 70B. With the stakes higher than ever, facilities teams face challenges like scheduling around load requirements and managing safety concerns during energized work. Fortunately, there’s a better way. APT’s SwitchMon® solution offers continuous, automated monitoring of electrical systems, providing real-time visibility and proactive alerts for developing faults. Discover how this innovative approach not only ensures compliance but also enhances operational efficiency and reduces risks. Ready to transform your compliance strategy?

Sub-Synchronous Oscillation: A Starter Guide for the AI Data Center Era

Sub-synchronous oscillation (SSO) is quickly becoming one of the most important and least understood power risks for AI-era data centers. This starter article steps into the theory behind SSO and why it matters, with the goal of giving you enough grounding to recognize the issue and ask better questions. Over the next few weeks, we will keep returning to this topic and dig deeper into the engineering side, from real data center examples to how monitoring, analytics, and design choices can keep these oscillations from turning into outages.