Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the contents of the file and retrieve debug information about the system.
https://cert-portal.siemens.com/productcert/pdf/ssa-413565.pdf