← Volver a CVEs
CVE-2020-2075
HIGH7.5
Descripcion
Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan LMS511, CLV62x – CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x, LMS12x, LMS13x, LMS14x, LMS5xx, LMS53x, MSC800, RFH.
Detalles CVE
Puntuacion CVSS v3.17.5
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Vector de ataqueNETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado8/31/2020
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
sick:clv620sick:clv620_firmwaresick:clv621sick:clv621_firmwaresick:clv622sick:clv622_firmwaresick:clv630sick:clv630_firmwaresick:clv631sick:clv631_firmwaresick:clv632sick:clv632_firmwaresick:clv640sick:clv640_firmwaresick:clv642sick:clv642_firmwaresick:clv650sick:clv650_firmwaresick:clv651sick:clv651_firmwaresick:icr890-3sick:icr890-3.5sick:icr890-3.5_firmwaresick:icr890-3_firmwaresick:lms100sick:lms100_firmwaresick:lms101sick:lms101_firmwaresick:lms111sick:lms111_firmwaresick:lms121sick:lms121_firmwaresick:lms122sick:lms122_firmwaresick:lms123sick:lms123_firmwaresick:lms131sick:lms131_firmwaresick:lms133sick:lms133_firmwaresick:lms141sick:lms141_firmwaresick:lms142sick:lms142_firmwaresick:lms143sick:lms143_firmwaresick:lms151sick:lms151_firmwaresick:lms153sick:lms153_firmwaresick:lms500sick:lms500_firmwaresick:lms511sick:lms511_firmwaresick:lms531sick:lms531_firmwaresick:msc800sick:msc800_firmwaresick:rfhsick:rfh_firmware
Debilidades (CWE)
CWE-703CWE-755
Referencias
https://www.sick.com/de/en/service-and-support/the-sick-product-security-incident-response-team-sick-psirt/w/psirt/#advisories(psirt@sick.de)
https://www.sick.com/de/en/service-and-support/the-sick-product-security-incident-response-team-sick-psirt/w/psirt/#advisories(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.