Vulnerability CVE-2024-27945
Published: 2024-05-14

Description:
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The bulk import feature of the affected systems allow a privileged user to upload files to the root installation directory of the system. By replacing specific files, an attacker could tamper specific files or even achieve remote code execution.

Type:

CWE-73

 (External Control of File Name or Path)

 References:
https://cert-portal.siemens.com/productcert/html/ssa-916916.html
Copyright 2024, cxsecurity.com

 

Back to Top