Siemens Location Intelligence

Monitor6.7ICS-CERT ICSA-24-228-07Aug 13, 2024

Attack VectorAdjacent

Auth RequiredNone

ComplexityHigh

User InteractionRequired

Summary

Location Intelligence versions before V4.4 contain multiple vulnerabilities affecting confidentiality and integrity. These vulnerabilities allow an attacker positioned on the network between a client and Location Intelligence to intercept and read data communications (affecting data confidentiality) or modify data in transit. Additionally, weak password enforcement mechanisms allow attackers to brute-force user credentials. Affected versions are Location Intelligence family below version 4.4.

What this means

What could happen

An attacker positioned on the network path between a client and Location Intelligence could intercept and modify data or brute-force user passwords, potentially gaining unauthorized access to change location data or system configuration.

Who's at risk

This affects organizations using Siemens Location Intelligence family for mapping and location-based services in industrial or geospatial operations. Vulnerable versions (before V4.4) are at risk if network access to Location Intelligence is possible from untrusted network segments.

How it could be exploited

An attacker on the same network segment (on-path position) can intercept unencrypted or weakly encrypted client-to-server communications. By reading this traffic, they can capture location data or authentication attempts. The weak password enforcement allows the attacker to brute-force credentials to gain direct access to the system.

Prerequisites

Network access to the network segment where Location Intelligence and its clients communicate
Position on the data path between client and server (e.g., same switch/VLAN or upstream router)
Location Intelligence version earlier than 4.4

Requires on-path network position (moderate complexity to exploit)Weak password enforcement enables brute-force attacksUnencrypted or weakly encrypted communicationsLow EPSS score (1.0%) but proof-of-concept exists

Exploitability

Low exploit probability (EPSS 1.0%)

Affected products (1)

ProductAffected VersionsFix Status

Location Intelligence family<V4.44.4

Remediation & Mitigation

0/4

Do now

0/1

WORKAROUNDIf remote access to Location Intelligence is required, use a VPN or secure tunnel to encrypt client-to-server communications

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

HOTFIXUpdate Location Intelligence to version 4.4 or later

Long-term hardening

0/2

HARDENINGIsolate Location Intelligence and its clients on a dedicated network segment or VLAN, restricting access from untrusted network paths

HARDENINGImplement network-level controls (firewall rules) to restrict access to Location Intelligence to only authorized client systems

CVEs (3)

CVE-2024-41681 CVE-2024-41682 CVE-2024-41683

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/95455323-942d-4601-b3ad-f9f5dc037b73