Multiple SQLite Vulnerabilities in RUGGEDCOM CROSSBOW Station Access Controller Before V5.7

An attacker with network access to the RUGGEDCOM CROSSBOW SAC could execute arbitrary code on the device, potentially allowing them to modify access control policies, capture credentials, or disrupt station authentication and access logging. Alternatively, they could crash the device causing a denial of service that blocks legitimate access to controlled systems.

This vulnerability affects organizations using RUGGEDCOM CROSSBOW Station Access Controller (SAC) for industrial network access control and authentication. Water authorities, electric utilities, and other critical infrastructure operators relying on this device for managing controlled access to operational networks should prioritize this update. The SAC is typically deployed at critical points in the OT network where it controls access to supervisory and control systems.

An attacker sends a specially crafted network request to the RUGGEDCOM CROSSBOW SAC that exploits the SQLite vulnerability. The device processes the malicious input without proper validation, allowing the attacker to execute arbitrary SQL commands or inject code that runs with the SAC's privileges.