Vulnerability CVE-2024-27941
Published: 2024-05-14

Description:
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected client systems do not properly sanitize input data before sending it to the SQL server. An attacker could use this vulnerability to compromise the whole database.

Type:

CWE-89

 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Copyright 2026, cxsecurity.com

 

Back to Top