CVE-2024-27946

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published May 14, 2024

CWE ID 22

Summary

CVE-2024-27946 is a newly identified vulnerability affecting RUGGEDCOM CROSSBOW prior to version V5.5. This issue allows an attacker with privileged access to download and overwrite any file in the installation directory with a file of the same name. By specifying the filename of the target file, an adversary can arbitrarily modify critical system configurations or data, potentially leading to serious consequences.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v7IOOt
https://www.cve.org/CVERecord?id=CVE-2024-27946
https://nvd.nist.gov/vuln/detail/CVE-2024-27946

Back to Vulnerability Database

CVE-2024-27946

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations