How severe is CVE-2024-27940?

CVE-2024-27940 has a CVSS v3 score of 8.8 (HIGH).

CVE-2024-27940

Name: ruggedcom_crossbow
Author: siemens

8.8HIGH

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL commands to the SQL server. An attacker could u

Опубликовано: 5/14/2024Обновлено: 2/6/2025

Описание

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL commands to the SQL server. An attacker could use this vulnerability to compromise the whole database.

ИИ-АнализНа базе ИИ

Затронутые продукты

siemensruggedcom_crossbow

Ссылки

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory