How severe is CVE-2023-23452?

CVE-2023-23452 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2023-23452

9.8CRITICAL

Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05 allows an unprivileged remote attacker to achieve arbitrary remote code execution via maliciously craf

发布于: 2/20/2023更新于: 3/18/2025

描述

Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05 allows an unprivileged remote attacker to achieve arbitrary remote code execution via maliciously crafted RK512 commands to the listener on TCP port 9000.

AI分析AI驱动

受影响产品

sickfx0-gpnt00000_firmware

3.04

sickfx0-gpnt00000_firmware

3.05

sickfx0-gpnt00000

sickfx0-gpnt00010_firmware

3.04

sickfx0-gpnt00010_firmware

3.05

sickfx0-gpnt00010

参考资料

https://sick.com/psirt
Vendor Advisory
https://sick.com/psirt
Vendor Advisory