← Back to CVEs
CVE-2020-2075
HIGH7.5
Description
Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan LMS511, CLV62x – CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x, LMS12x, LMS13x, LMS14x, LMS5xx, LMS53x, MSC800, RFH.
CVE Details
CVSS v3.1 Score7.5
SeverityHIGH
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published8/31/2020
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
sick:clv620sick:clv620_firmwaresick:clv621sick:clv621_firmwaresick:clv622sick:clv622_firmwaresick:clv630sick:clv630_firmwaresick:clv631sick:clv631_firmwaresick:clv632sick:clv632_firmwaresick:clv640sick:clv640_firmwaresick:clv642sick:clv642_firmwaresick:clv650sick:clv650_firmwaresick:clv651sick:clv651_firmwaresick:icr890-3sick:icr890-3.5sick:icr890-3.5_firmwaresick:icr890-3_firmwaresick:lms100sick:lms100_firmwaresick:lms101sick:lms101_firmwaresick:lms111sick:lms111_firmwaresick:lms121sick:lms121_firmwaresick:lms122sick:lms122_firmwaresick:lms123sick:lms123_firmwaresick:lms131sick:lms131_firmwaresick:lms133sick:lms133_firmwaresick:lms141sick:lms141_firmwaresick:lms142sick:lms142_firmwaresick:lms143sick:lms143_firmwaresick:lms151sick:lms151_firmwaresick:lms153sick:lms153_firmwaresick:lms500sick:lms500_firmwaresick:lms511sick:lms511_firmwaresick:lms531sick:lms531_firmwaresick:msc800sick:msc800_firmwaresick:rfhsick:rfh_firmware
Weaknesses (CWE)
CWE-703CWE-755
References
https://www.sick.com/de/en/service-and-support/the-sick-product-security-incident-response-team-sick-psirt/w/psirt/#advisories(psirt@sick.de)
https://www.sick.com/de/en/service-and-support/the-sick-product-security-incident-response-team-sick-psirt/w/psirt/#advisories(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.