CVE-2024-27946
CVSS V2 None
CVSS V3 None
Description
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). Downloading files overwrites files with the same name in the
installation directory of the affected systems. The filename for
the target file can be specified, thus arbitrary files can be
overwritten by an attacker with the required privileges.
Overview
- CVE ID
- CVE-2024-27946
- Assigner
- siemens
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-05-14T10:02:15.551Z
- Last Modified Date
- 2024-06-04T17:46:45.178Z
Weakness Enumerations
References
| Reference URL | Reference Tags |
|---|---|
| https://cert-portal.siemens.com/productcert/html/ssa-916916.html |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-27946 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-27946 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-26 01:42:05 | Added to TrackCVE |