CISA 2026-04-21

Siemens RUGGEDCOM CROSSBOW Station Access Controller (SAC)

CVE-2025-6965

Machine-generated analysis · WAYSCloud LLM

The vulnerability originates from an SQLite dependency in Siemens industrial controllers. This affects versions below 5.8 and enables both code execution and denial of service.

Context

The Siemens RUGGEDCOM CROSSBOW Station Access Controller (SAC) is an industrial access control device. The advisory describes a numeric truncation error in an embedded SQLite component that could lead to memory corruption. The advisory notes deployment in critical manufacturing sectors worldwide.

Operator considerations

Check: Inventory all Siemens RUGGEDCOM CROSSBOW SAC controllers for versions below 5.8
Patch: Update to version 5.8 or later using Siemens' provided update

From Cybersecurity and Infrastructure Security Agency ↗

RUGGEDCOM CROSSBOW Station Access Controller (SAC) contains a vulnerability that could allow an attacker to achieve arbitrary code execution and to create a denial of service condition. Siemens has released a new version for RUGGEDCOM CROSSBOW Station Access Controller (SAC) and recommends to update to the latest version.

The following versions of Siemens RUGGEDCOM CROSSBOW Station Access Controller (SAC) are affected:

RUGGEDCOM CROSSBOW Station Access Controller (SAC) vers:intdot/

Read the full advisory on CISA →