How severe is CVE-2024-27940?

CVE-2024-27940 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-27940

Name: ruggedcom_crossbow
Author: siemens

8.8HIGH

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL commands to the SQL server. An attacker could u

Published: 5/14/2024Updated: 2/6/2025

Description

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL commands to the SQL server. An attacker could use this vulnerability to compromise the whole database.

AI AnalysisPowered by AI

Affected Products

siemensruggedcom_crossbow

References

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory