CVE-2024-27940 Information

Description

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any authenticated user to send arbitrary SQL commands to the SQL server. An attacker could use this vulnerability to compromise the whole database.

Reference

https://cert-portal.siemens.com/productcert/html/ssa-916916.html