CVE-2023-27309
CVE-2023-27309
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.2). The client query handler of the affected application fails to check for proper permissions for specific write queries. This could allow an authenticated remote attacker to perform unauthorized actions.
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C
Produtos afetados
Siemens · RUGGEDCOM CROSSBOWQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →