How severe is CVE-2024-27945?

CVE-2024-27945 has a CVSS v3 score of 7.2 (HIGH).

CVE-2024-27945

Name: ruggedcom_crossbow
Author: siemens

7.2HIGH

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The bulk import feature of the affected systems allow a privileged user to upload files to the root installation direct

Publicado: 5/14/2024Actualizado: 2/6/2025

Descripción

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The bulk import feature of the affected systems allow a privileged user to upload files to the root installation directory of the system. By replacing specific files, an attacker could tamper specific files or even achieve remote code execution.

Análisis IAImpulsado por IA

Productos Afectados

siemensruggedcom_crossbow

Referencias

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory