Vulnerability CVE-2024-27944


Published: 2024-05-14

Description:
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow a privileged user to upload firmware files to the root installation directory of the system. By replacing specific files, an attacker could tamper specific files or even achieve remote code execution.

Type:

CWE-73

(External Control of File Name or Path)

 References:
https://cert-portal.siemens.com/productcert/html/ssa-916916.html

Copyright 2024, cxsecurity.com

 

Back to Top