How severe is CVE-2024-27939?

CVE-2024-27939 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2024-27939

Name: ruggedcom_crossbow
Author: siemens

9.8CRITICAL

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow the upload of arbitrary files of any unauthenticated user. An attacker could leverage this v

Published: 5/14/2024Updated: 2/6/2025

Description

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow the upload of arbitrary files of any unauthenticated user. An attacker could leverage this vulnerability and achieve arbitrary code execution with system privileges.

AI AnalysisPowered by AI

Affected Products

siemensruggedcom_crossbow

References

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory