How severe is CVE-2024-27939?

CVE-2024-27939 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-27939

Name: ruggedcom_crossbow
Author: siemens

9.8CRITICAL

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow the upload of arbitrary files of any unauthenticated user. An attacker could leverage this v

Veröffentlicht: 5/14/2024Aktualisiert: 2/6/2025

Beschreibung

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow the upload of arbitrary files of any unauthenticated user. An attacker could leverage this vulnerability and achieve arbitrary code execution with system privileges.

KI-AnalyseKI-gestützt

Betroffene Produkte

siemensruggedcom_crossbow

Referenzen

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory