How severe is CVE-2024-27946?

CVE-2024-27946 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2024-27946

Name: ruggedcom_crossbow
Author: siemens

6.5MEDIUM

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). Downloading files overwrites files with the same name in the installation directory of the affected systems. The file

Publicado: 5/14/2024Actualizado: 2/6/2025

Descripción

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). Downloading files overwrites files with the same name in the installation directory of the affected systems. The filename for the target file can be specified, thus arbitrary files can be overwritten by an attacker with the required privileges.

Análisis IAImpulsado por IA

Productos Afectados

siemensruggedcom_crossbow

Referencias

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory