CVE-2025-49196

Опубликовано: 12 июн. 2025

Источник: nvd

CVSS3: 6.5

CVSS3: 9.1

EPSS Низкий

Описание

A service supports the use of a deprecated and unsafe TLS version. This could be exploited to expose sensitive information, modify data in unexpected ways or spoof identities of other users or devices, affecting the confidentiality and integrity of the device.

Ссылки

https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF
Broken Link
https://sick.com/psirt
Vendor Advisory
https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
US Government Resource
https://www.first.org/cvss/calculator/3.1
Not Applicable
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.json
Vendor Advisory
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sick:field_analytics:*:*:*:*:*:*:*:*

EPSS

Процентиль: 10%

0.00034

Низкий

6.5 Medium

CVSS3

9.1 Critical

CVSS3

Дефекты

CWE-327

Связанные уязвимости

GHSA-fx6m-qmcx-9x4v

CVSS3: 6.5

github

8 месяцев назад

EPSS

Процентиль: 10%

0.00034

Низкий

6.5 Medium

CVSS3

9.1 Critical

CVSS3

Дефекты

CWE-327