all InfoSec news
SSA-916916 V1.0: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.5
Siemens ProductCERT Security Advisories cert-portal.siemens.com
The RUGGEDCOM CROSSBOW server application before V5.5 contains multiple vulnerabilities that could allow an attacker to execute arbitrary database queries via SQL injection attacks, or upload of arbitrary files to the application’s file system. The majority of the reported vulnerabilities might have a high impact in the availability of the affected systems.
Siemens has released a new version for RUGGEDCOM CROSSBOW and recommends to update to the latest version.
application arbitrary files attacker attacks availability database file files file system high impact injection injection attacks ruggedcom security server sql sql injection ssa system upload vulnerabilities