How severe is CVE-2024-27944?

CVE-2024-27944 has a CVSS v3 score of 7.2 (HIGH).

CVE-2024-27944

Name: ruggedcom_crossbow
Author: siemens

7.2HIGH

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow a privileged user to upload firmware files to the root installation directory of the system.

Опубликовано: 5/14/2024Обновлено: 2/6/2025

Описание

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow a privileged user to upload firmware files to the root installation directory of the system. By replacing specific files, an attacker could tamper specific files or even achieve remote code execution.

ИИ-АнализНа базе ИИ

Затронутые продукты

siemensruggedcom_crossbow

Ссылки

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory