How severe is CVE-2024-27945?

CVE-2024-27945 has a CVSS v3 score of 7.2 (HIGH).

CVE-2024-27945

Name: ruggedcom_crossbow
Author: siemens

7.2HIGH

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The bulk import feature of the affected systems allow a privileged user to upload files to the root installation direct

Опубликовано: 5/14/2024Обновлено: 2/6/2025

Описание

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The bulk import feature of the affected systems allow a privileged user to upload files to the root installation directory of the system. By replacing specific files, an attacker could tamper specific files or even achieve remote code execution.

ИИ-АнализНа базе ИИ

Затронутые продукты

siemensruggedcom_crossbow

Ссылки

https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Vendor Advisory