CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-3271

Improper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing unauthenticated endpoints.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.6%

CVSS Severity

CVSS v3 Score 8.2

References

https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json
https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf
https://sick.com/psirt
https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json
https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf
https://sick.com/psirt

Products affected by CVE-2023-3271

Sick » Icr890-4 » Version: N/A

cpe:2.3:h:sick:icr890-4:-
Sick » Icr890-4 Firmware » Version: Any

cpe:2.3:o:sick:icr890-4_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-3271

Products

Pricing

Contact Us