ГлавнаяУязвимости → CVE-2024-27945
7.2высокая

CVE-2024-27945

Описание

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The bulk import feature of the affected systems allow a privileged user to upload files to the root installation directory of the system. By replacing specific files, an attacker could tamper specific files or even achieve remote code execution.

Затрагиваемое ПО
Siemens Ruggedcom crossbow
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://cert-portal.siemens.com/productcert/html/ssa-916916.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-916916.html