Siemens Ruggedcom Crossbow

16 CVEs affecting Siemens Ruggedcom Crossbow. Latest disclosed: 2024-05-14. Critical: 2, High: 8.

Top CVEs affecting Siemens Ruggedcom Crossbow
CVESeverityScorePublishedSummary
CVE-2024-27939Critical9.82024-05-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow the upload of arbitrary files of any unauthenticate…
CVE-2023-37372Critical9.82023-08-08A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.4). The affected applications is vulnerable to SQL injection. This could allow an…
CVE-2024-27941High8.82024-05-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected client systems do not properly sanitize input data before sending…
CVE-2024-27940High8.82024-05-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL comman…
CVE-2023-27411High8.82023-08-08A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.4). The affected applications is vulnerable to SQL injection. This could allow an…
CVE-2023-27463High8.82023-03-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.3). The audit log form of affected applications is vulnerable to SQL injection. Th…
CVE-2024-27942High7.52024-05-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any unauthenticated client to disconnect any active…
CVE-2024-27945High7.22024-05-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The bulk import feature of the affected systems allow a privileged user to upl…
CVE-2024-27944High7.22024-05-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow a privileged user to upload firmware files to the r…
CVE-2024-27943High7.22024-05-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow a privileged user to upload generic files to the ro…
CVE-2023-27310Medium6.62023-03-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.2). The client query handler of the affected application fails to check for proper…
CVE-2024-27946Medium6.52024-05-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). Downloading files overwrites files with the same name in the installation di…
CVE-2024-27947Medium5.32024-05-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems could allow log messages to be forwarded to a specific cl…
CVE-2023-37373Medium5.32023-08-08A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.4). The affected applications accept unauthenticated file write messages. An unaut…
CVE-2023-27309Medium5.02023-03-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.2). The client query handler of the affected application fails to check for proper…
CVE-2023-27462Low3.12023-03-14A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.3). The client query handler of the affected application fails to check for proper…