How severe is CVE-2024-27940?

CVE-2024-27940 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-27940

Name: ruggedcom_crossbow
Author: siemens

8.8HIGH

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL commands to the SQL server. An attacker could u

Publicado: 5/14/2024Actualizado: 2/6/2025

Descripción

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL commands to the SQL server. An attacker could use this vulnerability to compromise the whole database.

Análisis IAImpulsado por IA

Productos Afectados

siemensruggedcom_crossbow

Referencias

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory