How severe is CVE-2023-23452?

CVE-2023-23452 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2023-23452

9.8CRITICAL

Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05 allows an unprivileged remote attacker to achieve arbitrary remote code execution via maliciously craf

Veröffentlicht: 2/20/2023Aktualisiert: 3/18/2025

Beschreibung

Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05 allows an unprivileged remote attacker to achieve arbitrary remote code execution via maliciously crafted RK512 commands to the listener on TCP port 9000.

KI-AnalyseKI-gestützt

Betroffene Produkte

sickfx0-gpnt00000_firmware

3.04

sickfx0-gpnt00000_firmware

3.05

sickfx0-gpnt00000

sickfx0-gpnt00010_firmware

3.04

sickfx0-gpnt00010_firmware

3.05

sickfx0-gpnt00010

Referenzen

https://sick.com/psirt
Vendor Advisory
https://sick.com/psirt
Vendor Advisory