CVE-2023-1552

Name of the Vulnerable Software and Affected Versions ToolboxST versions prior to 7.10

Description The issue is related to a deserialization vulnerability. An attacker with local access to an HMI or who has conducted a social engineering attack on an authorized operator could execute code in a Toolbox user's context through the deserialization of an untrusted configuration file. Two attack vectors are possible: local access to an HMI and social engineering attacks on authorized operators.

Recommendations For versions prior to 7.10, update to ToolboxST 7.10, which can be found in ControlST 7.10. If unable to update at this time, ensure to follow the guidance laid out in GE Gas Power's Secure Deployment Guide (GEH-6839). Ensure not to run ToolboxST as an Administrative user.