CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-23452

Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05 allows an unprivileged remote attacker to achieve arbitrary remote code execution via maliciously crafted RK512 commands to the listener on TCP port 9000.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.024

EPSS Ranking 84.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://sick.com/psirt
https://sick.com/psirt

Products affected by CVE-2023-23452

Sick » Fx0-Gpnt00000 » Version: N/A

cpe:2.3:h:sick:fx0-gpnt00000:-
Sick » Fx0-Gpnt00010 » Version: N/A

cpe:2.3:h:sick:fx0-gpnt00010:-
Sick » Fx0-Gpnt00000 Firmware » Version: 3.04

cpe:2.3:o:sick:fx0-gpnt00000_firmware:3.04
Sick » Fx0-Gpnt00000 Firmware » Version: 3.05

cpe:2.3:o:sick:fx0-gpnt00000_firmware:3.05
Sick » Fx0-Gpnt00010 Firmware » Version: 3.04

cpe:2.3:o:sick:fx0-gpnt00010_firmware:3.04
Sick » Fx0-Gpnt00010 Firmware » Version: 3.05

cpe:2.3:o:sick:fx0-gpnt00010_firmware:3.05

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-23452

Products

Pricing

Contact Us