Assigner | siemens |
Reserved | 2024-02-28 |
Published | 2024-05-14 |
Updated | 2024-06-04 |
Description
A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow any unauthenticated client to disconnect any active user from the server. An attacker could use this vulnerability to prevent any user to perform actions in the system, causing a denial of service situation.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C |
Problem types
CWE-306: Missing Authentication for Critical Function
Product status
Any version before V5.5
References
https://cert-portal.siemens.com/productcert/html/ssa-916916.html