CISA 2026-04-21

Siemens RUGGEDCOM CROSSBOW Secure Access Manager Primary

CVE-2026-27668

Machine-generated analysis · WAYSCloud LLM

The advisory specifies that this privilege escalation vulnerability affects User Administrators who can administer their own groups. The product is deployed worldwide in critical manufacturing sectors.

Context

Siemens RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) is a secure access management product used in industrial environments. The advisory states that authenticated User Administrators can escalate their own privileges and gain access to any device group at any access level. Worth noting: the vulnerability is specifically tied to group administration permissions for users who already have administrative roles.

Operator considerations

Check: Inventory all RUGGEDCOM CROSSBOW SAM-P installations with versions prior to 5.8
Patch: Update to version 5.8 or later using Siemens' official update channel

From Cybersecurity and Infrastructure Security Agency ↗

RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) contains a vulnerability that could allow an attacker to escalate their own privileges. Siemens has released a new version for RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) and recommends to update to the latest version.

The following versions of Siemens RUGGEDCOM CROSSBOW Secure Access Manager Primary are affected:

RUGGEDCOM CROSSBOW Secure Access Manager Primary (SAM-P) vers:intdot/

Read the full advisory on CISA →