CVE-2023-5100

Опубликовано: 09 окт. 2023

Источник: nvd

CVSS3: 5.9

CVSS3: 6.5

EPSS Низкий

Описание

Cleartext Transmission of Sensitive Information in RDT400 in SICK APU allows an unprivileged remote attacker to retrieve potentially sensitive information via intercepting network traffic that is not encrypted.

Ссылки

https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json
Vendor Advisory
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf
Vendor Advisory
https://sick.com/psirt
Product
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json
Vendor Advisory
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf
Vendor Advisory
https://sick.com/psirt
Product

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:sick:apu0200_firmware:*:*:*:*:*:*:*:*

Версия до 4.0.0.6 (исключая)

cpe:2.3:h:sick:apu0200:-:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00075

Низкий

5.9 Medium

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-319

Связанные уязвимости

GHSA-4xg4-7g55-x922

CVSS3: 5.9

github

больше 2 лет назад

EPSS

Процентиль: 23%

0.00075

Низкий

5.9 Medium

CVSS3

6.5 Medium

CVSS3

Дефекты

CWE-319