Siemens RUGGEDCOM CROSSBOW Access Control Error Vulnerability

RUGGEDCOM CROSSBOW is a secure access management solution designed to provide NERC CIP-compliant access to intelligent electronic devices. an access control error vulnerability exists in Siemens RUGGEDCOM CROSSBOW, which stems from the failure of the affected application’s client-side query handler to check the appropriate permissions for a specific write query. An attacker could exploit the vulnerability to perform unauthorized operations.