A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1.9.5), Industrial Edge Management Virtual (All versions < V2.3.1-1). Affected components do not properly validate the device tokens. This could allow an unauthenticated remote attacker to impersonate other devices onboarded to the system.
https://www.cisa.gov/news-events/ics-advisories/icsa-24-256-11
https://cert-portal.siemens.com/productcert/html/ssa-359713.html