CVE-2023-35696
7.5HIGHUnauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated remote attacker to retrieve sensitive information about the device via HTTP requests.
Published: 7/10/2023Updated: 11/21/2024
Description
Unauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated remote attacker to retrieve sensitive information about the device via HTTP requests.
AI AnalysisPowered by AI
Affected Products
sickicr890-4_firmware
sickicr890-4
-
References
- https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.jsonVendor Advisory
- https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdfVendor Advisory
- https://sick.com/psirtProduct
- https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.jsonVendor Advisory
- https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdfVendor Advisory
- https://sick.com/psirtProduct