CVE-2024-27941

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published May 14, 2024

CWE ID 89

Summary

CVE-2024-27941 is a newly identified vulnerability affecting all versions of RUGGEDCOM CROSSBOW below V5.5. This issue stems from the client systems' failure to sanitize input data before transmitting it to the SQL server. An attacker can exploit this flaw to gain unauthorized access to the database, potentially compromising sensitive information. The vulnerability poses a significant risk to organizations using the RUGGEDCOM CROSSBOW product and requires immediate attention and patching.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v7IOOj
https://www.cve.org/CVERecord?id=CVE-2024-27941
https://nvd.nist.gov/vuln/detail/CVE-2024-27941

Back to Vulnerability Database

CVE-2024-27941

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations