ГлавнаяУязвимости → CVE-2025-49184
7.5высокая

CVE-2025-49184

Описание

A remote unauthorized attacker may gather sensitive information of the application, due to missing authorization of configuration settings of the product.

Затрагиваемое ПО
Sick Baggage analyticsSick Enterprise analyticsSick Field analyticsSick Logistic diagnostic analyticsSick Package analyticsSick Tire analytics
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Источники
https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDFhttps://sick.com/psirthttps://www.cisa.gov/resources-tools/resources/ics-recommended-practiceshttps://www.first.org/cvss/calculator/3.1https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.jsonhttps://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf