CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-49186

The product does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it susceptible to brute-force attacks.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.4%

CVSS Severity

CVSS v3 Score 5.3

References

https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF
https://sick.com/psirt
https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
https://www.first.org/cvss/calculator/3.1
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.json
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf

Products affected by CVE-2025-49186

Avaya » Media Server » Version: N/A

cpe:2.3:a:avaya:media_server:-
Sick » Baggage Analytics » Version: Any

cpe:2.3:a:sick:baggage_analytics:*
Sick » Field Analytics » Version: Any

cpe:2.3:a:sick:field_analytics:*
Sick » Logistic Diagnostic Analytics » Version: Any

cpe:2.3:a:sick:logistic_diagnostic_analytics:*
Sick » Package Analytics » Version: 04.0.0

cpe:2.3:a:sick:package_analytics:04.0.0
Sick » Package Analytics » Version: 04.1.1

cpe:2.3:a:sick:package_analytics:04.1.1
Sick » Tire Analytics » Version: Any

cpe:2.3:a:sick:tire_analytics:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-49186

Products

Pricing

Contact Us