ICS-CERT has released an advisory on a Schneider Electric StruxureOn Gateway vulnerability. All versions prior to 1.2 are affected. Successful exploitation of this vulnerability could allow a remote attacker to upload a malicious file to any directory on the device, which could lead to remote code execution. Schneider Electric has released a new version of the software. ICS-CERT also recommends a series of defensive measures to minimize the risk of exploitation of this vulnerability. ICS-CERT.