How severe is CVE-2024-27940?

CVE-2024-27940 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-27940

Name: ruggedcom_crossbow
Author: siemens

8.8HIGH

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL commands to the SQL server. An attacker could u

Veröffentlicht: 5/14/2024Aktualisiert: 2/6/2025

Beschreibung

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL commands to the SQL server. An attacker could use this vulnerability to compromise the whole database.

KI-AnalyseKI-gestützt

Betroffene Produkte

siemensruggedcom_crossbow

Referenzen

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory