← Back to home
SIEMENS-SSA-916916  ·  Published 2024-05-14  ·  View on Siemens ProductCERT ↗

SSA-916916 V1.0: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.5

CVSS N/A MEDIUM

Risk Summary

<p>The RUGGEDCOM CROSSBOW server application before V5.5 contains multiple vulnerabilities that could allow an attacker to execute arbitrary database queries via SQL injection attacks, or upload of arbitrary files to the application’s file system. The majority of the reported vulnerabilities might have a high impact in the availability of the affected systems.</p> <p>Siemens has released a new version for RUGGEDCOM CROSSBOW and recommends to update to the latest version.</p>

Remediations

  • Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-916916 V1.0: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.5 See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more