ГлавнаяУязвимости → CVE-2024-27943
7.2высокая

CVE-2024-27943

→ есть в БДУ: BDU:2024-05750 (на русском)
Описание (на английском; русское — в БДУ выше)

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow a privileged user to upload generic files to the root installation directory of the system. By replacing specific files, an attacker could tamper specific files or even achieve remote code execution.

Затрагиваемое ПО
Siemens Ruggedcom crossbow
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://cert-portal.siemens.com/productcert/html/ssa-916916.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-916916.html