The vulnerability of the Siemens RUGGEDCOM CROSSBOW access control system, related to the lack of protection for operational data, allows a intruder to gain unauthorized access to confidential information.

🗓️ 24 May 2024 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Siemens CROSSBOW access control has unprotected data enabling remote intruders to access data.

Reporter	Title	Published	Views	Family All 12
CNNVD	Siemens RUGGEDCOM CROSSBOW 信息泄露漏洞	14 May 202400:00	–	cnnvd
CNVD	Siemens RUGGEDCOM CROSSBOW Information Disclosure Vulnerability	16 May 202400:00	–	cnvd
CVE	CVE-2024-27947	14 May 202410:02	–	cve
Cvelist	CVE-2024-27947	14 May 202410:02	–	cvelist
EUVD	EUVD-2024-25121	3 Oct 202520:07	–	euvd
ICS	Siemens RUGGEDCOM CROSSBOW	14 May 202400:00	–	ics
NCSC	Vulnerabilities fixed in Siemens products	14 May 202400:00	–	ncsc
NVD	CVE-2024-27947	14 May 202416:16	–	nvd
OSV	CVE-2024-27947	14 May 202416:16	–	osv
Positive Technologies	PT-2024-3685 · Unknown · Ruggedcom Crossbow	14 May 202400:00	–	ptsecurity

Vulners

Node

siemens_ag ruggedcom_crossbowRange<5.5

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-916916.html
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2024051720
vuldb	www.vuldb.com/
web	www.web.nvd.nist.gov/view/vuln/detail

24 May 2024 00:00Current

5.5Medium risk

Vulners AI Score5.5

CVSS 25

CVSS 35.3

EPSS0.00412

ruggedcom crossbow access control unprotected data remote intruders confidential data