A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.5). The affected systems allow the upload of arbitrary files of any unauthenticated user. An attacker could leverage this vulnerability and achieve arbitrary code execution with system privileges.
https://www.cisa.gov/news-events/ics-advisories/icsa-24-137-10
https://cert-portal.siemens.com/productcert/html/ssa-916916.html