SIEMENS-SSA-260625 · Published 2023-03-14 · View on Siemens ProductCERT ↗

SSA-260625 V1.0: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.2

CVSS 6.6 MEDIUM

Risk Summary

<p>RUGGEDCOM CROSSBOW V5.2 fixes two vulnerabilities that could allow authenticated remote attackers to perform unauthorized actions (CVE-2023-27309) or escalate privileges (CVE-2023-27310).</p> <p>Siemens has released an update for RUGGEDCOM CROSSBOW and recommends to update to the latest version.</p>

CVEs (2)

CVE-2023-27309 CVE-2023-27310

Remediations

Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-260625 V1.0: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.2 See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more