According to the CVSS metric, privileges required is low (PR:L). What does that mean for this vulnerability? Successful exploitation of this vulnerability requires the attacker to be able to send a malicious update package to the Defender for IoT sensor over the network. To do this, the attacker would first need to authenticate themselves and gain the necessary permissions to initiate the update process. How could an attacker exploit this vulnerability? Successful exploitation of this path traversal vulnerability would require an attacker to have user credentials on the targeted machine and then send a tar file to the Defender for IoT sensor. After the extraction process completed, the attacker could then send unsigned update packages and overwrite any file they chose. What actions do customers need to take to protect themselves from this vulnerability? Customers need to update their Defender for IoT software to version 24.1.3 or above. For more information, see OT monitoring software versions.
<a href="https://www.siemens-energy.com/">Siemens Energy</a>