CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-35698

Observable Response Discrepancy in the SICK ICR890-4 could allow a remote attacker to identify valid usernames for the FTP server from the response given during a failed login attempt.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.4%

CVSS Severity

CVSS v3 Score 5.3

References

https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json
https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf
https://sick.com/psirt
https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json
https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf
https://sick.com/psirt

Products affected by CVE-2023-35698

Sick » Icr890-4 » Version: N/A

cpe:2.3:h:sick:icr890-4:-
Sick » Icr890-4 Firmware » Version: Any

cpe:2.3:o:sick:icr890-4_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-35698

Products

Pricing

Contact Us