CVE-2025-58581

Опубликовано: 06 окт. 2025

Источник: nvd

CVSS3: 4.3

EPSS Низкий

Описание

When an error occurs in the application a full stacktrace is provided to the user. The stacktrace lists class and method names as well as other internal information. An attacker can thus obtain information about the technology used and the structure of the application.

Ссылки

https://sick.com/psirt
Vendor Advisory
https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
US Government Resource
https://www.first.org/cvss/calculator/3.1
Not Applicable
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0010.json
Vendor Advisory
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0010.pdf
Vendor Advisory
https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf
Product

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:sick:enterprise_analytics:*:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.00051

Низкий

4.3 Medium

CVSS3

Дефекты

CWE-200

NVD-CWE-noinfo

Связанные уязвимости

GHSA-g2mw-w8gr-6g2r