cvelistv5 - cve-2023-3271

cve-2023-3271

Vulnerability from cvelistv5

Published

2023-07-10 09:26

Modified

2024-11-12 14:19

Severity ?

8.2 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

Summary

Improper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing unauthenticated endpoints.

References

URL	Tags
psirt@sick.de	https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json	Vendor Advisory
psirt@sick.de	https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf	Vendor Advisory
psirt@sick.de	https://sick.com/psirt	Product
af854a3a-2127-422b-91ae-364da2661108	https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://sick.com/psirt	Product

Impacted products

	Vendor	Product	Version
	SICK AG	ICR890-4	Version: 0

Show details on NVD website

JSON

To clipboard

{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-02T06:48:08.371Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "issue-tracking",
                     "x_transferred",
                  ],
                  url: "https://sick.com/psirt",
               },
               {
                  tags: [
                     "vendor-advisory",
                     "x_transferred",
                  ],
                  url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
               },
               {
                  tags: [
                     "x_csaf",
                     "x_transferred",
                  ],
                  url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
               },
            ],
            title: "CVE Program Container",
         },
         {
            affected: [
               {
                  cpes: [
                     "cpe:2.3:a:sick_ag:icr890-4:*:*:*:*:*:*:*:*",
                  ],
                  defaultStatus: "unknown",
                  product: "icr890-4",
                  vendor: "sick_ag",
                  versions: [
                     {
                        lessThan: "2.5.0",
                        status: "affected",
                        version: "0",
                        versionType: "custom",
                     },
                  ],
               },
            ],
            metrics: [
               {
                  other: {
                     content: {
                        id: "CVE-2023-3271",
                        options: [
                           {
                              Exploitation: "none",
                           },
                           {
                              Automatable: "yes",
                           },
                           {
                              "Technical Impact": "partial",
                           },
                        ],
                        role: "CISA Coordinator",
                        timestamp: "2024-11-12T14:19:06.230650Z",
                        version: "2.0.3",
                     },
                     type: "ssvc",
                  },
               },
            ],
            providerMetadata: {
               dateUpdated: "2024-11-12T14:19:30.590Z",
               orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0",
               shortName: "CISA-ADP",
            },
            title: "CISA ADP Vulnrichment",
         },
      ],
      cna: {
         affected: [
            {
               defaultStatus: "affected",
               product: "ICR890-4",
               vendor: "SICK AG",
               versions: [
                  {
                     lessThan: "2.5.0",
                     status: "affected",
                     version: "0",
                     versionType: "*",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               supportingMedia: [
                  {
                     base64: true,
                     type: "text/html",
                     value: "\n\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\nunauthenticated endpoints.\n\n",
                  },
               ],
               value: "\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\nunauthenticated endpoints.\n\n",
            },
         ],
         metrics: [
            {
               cvssV3_1: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "LOW",
                  baseScore: 8.2,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L",
                  version: "3.1",
               },
               format: "CVSS",
               scenarios: [
                  {
                     lang: "en",
                     value: "GENERAL",
                  },
               ],
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-284",
                     description: "CWE-284 Improper Access Control",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2023-07-10T09:32:48.098Z",
            orgId: "a6863dd2-93fc-443d-bef1-79f0b5020988",
            shortName: "SICK AG",
         },
         references: [
            {
               tags: [
                  "issue-tracking",
               ],
               url: "https://sick.com/psirt",
            },
            {
               tags: [
                  "vendor-advisory",
               ],
               url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
            },
            {
               tags: [
                  "x_csaf",
               ],
               url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
            },
         ],
         solutions: [
            {
               lang: "en",
               supportingMedia: [
                  {
                     base64: false,
                     type: "text/html",
                     value: "\n\nThe recommended solution is to update the firmware to a version &gt;= V2.5.0 as soon as\npossible.\n\n<br>",
                  },
               ],
               value: "\nThe recommended solution is to update the firmware to a version >= V2.5.0 as soon as\npossible.\n\n\n",
            },
         ],
         source: {
            discovery: "INTERNAL",
         },
         x_generator: {
            engine: "Vulnogram 0.1.0-dev",
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "a6863dd2-93fc-443d-bef1-79f0b5020988",
      assignerShortName: "SICK AG",
      cveId: "CVE-2023-3271",
      datePublished: "2023-07-10T09:26:21.041Z",
      dateReserved: "2023-06-15T11:32:31.460Z",
      dateUpdated: "2024-11-12T14:19:30.590Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
   "vulnerability-lookup:meta": {
      nvd: "{\"cve\":{\"id\":\"CVE-2023-3271\",\"sourceIdentifier\":\"psirt@sick.de\",\"published\":\"2023-07-10T16:15:55.443\",\"lastModified\":\"2024-11-21T08:16:52.337\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"\\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\\nunauthenticated endpoints.\\n\\n\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@sick.de\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L\",\"baseScore\":8.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":3.9,\"impactScore\":4.2},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"psirt@sick.de\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-284\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sick:icr890-4_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.5.0\",\"matchCriteriaId\":\"C9781FA2-2446-4587-8BBA-1AC342BC5A0F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:sick:icr890-4:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E1AF1D7-8380-4B5C-8258-214F00638CC2\"}]}]}],\"references\":[{\"url\":\"https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json\",\"source\":\"psirt@sick.de\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf\",\"source\":\"psirt@sick.de\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://sick.com/psirt\",\"source\":\"psirt@sick.de\",\"tags\":[\"Product\"]},{\"url\":\"https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://sick.com/psirt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Product\"]}]}}",
      vulnrichment: {
         containers: "{\"cna\": {\"affected\": [{\"defaultStatus\": \"affected\", \"product\": \"ICR890-4\", \"vendor\": \"SICK AG\", \"versions\": [{\"lessThan\": \"2.5.0\", \"status\": \"affected\", \"version\": \"0\", \"versionType\": \"*\"}]}], \"descriptions\": [{\"lang\": \"en\", \"supportingMedia\": [{\"base64\": true, \"type\": \"text/html\", \"value\": \"\\n\\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\\nunauthenticated endpoints.\\n\\n\"}], \"value\": \"\\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\\nunauthenticated endpoints.\\n\\n\"}], \"metrics\": [{\"cvssV3_1\": {\"attackComplexity\": \"LOW\", \"attackVector\": \"NETWORK\", \"availabilityImpact\": \"LOW\", \"baseScore\": 8.2, \"baseSeverity\": \"HIGH\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"scope\": \"UNCHANGED\", \"userInteraction\": \"NONE\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L\", \"version\": \"3.1\"}, \"format\": \"CVSS\", \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"problemTypes\": [{\"descriptions\": [{\"cweId\": \"CWE-284\", \"description\": \"CWE-284 Improper Access Control\", \"lang\": \"en\", \"type\": \"CWE\"}]}], \"providerMetadata\": {\"orgId\": \"a6863dd2-93fc-443d-bef1-79f0b5020988\", \"shortName\": \"SICK AG\", \"dateUpdated\": \"2023-07-10T09:32:48.098Z\"}, \"references\": [{\"tags\": [\"issue-tracking\"], \"url\": \"https://sick.com/psirt\"}, {\"tags\": [\"vendor-advisory\"], \"url\": \"https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf\"}, {\"tags\": [\"x_csaf\"], \"url\": \"https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json\"}], \"solutions\": [{\"lang\": \"en\", \"supportingMedia\": [{\"base64\": false, \"type\": \"text/html\", \"value\": \"\\n\\nThe recommended solution is to update the firmware to a version &gt;= V2.5.0 as soon as\\npossible.\\n\\n<br>\"}], \"value\": \"\\nThe recommended solution is to update the firmware to a version >= V2.5.0 as soon as\\npossible.\\n\\n\\n\"}], \"source\": {\"discovery\": \"INTERNAL\"}, \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}}, \"adp\": [{\"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T06:48:08.371Z\"}, \"title\": \"CVE Program Container\", \"references\": [{\"tags\": [\"issue-tracking\", \"x_transferred\"], \"url\": \"https://sick.com/psirt\"}, {\"tags\": [\"vendor-advisory\", \"x_transferred\"], \"url\": \"https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf\"}, {\"tags\": [\"x_csaf\", \"x_transferred\"], \"url\": \"https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json\"}]}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-3271\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-12T14:19:06.230650Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:sick_ag:icr890-4:*:*:*:*:*:*:*:*\"], \"vendor\": \"sick_ag\", \"product\": \"icr890-4\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"2.5.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-12T14:19:26.591Z\"}}]}",
         cveMetadata: "{\"cveId\": \"CVE-2023-3271\", \"assignerOrgId\": \"a6863dd2-93fc-443d-bef1-79f0b5020988\", \"state\": \"PUBLISHED\", \"assignerShortName\": \"SICK AG\", \"dateReserved\": \"2023-06-15T11:32:31.460Z\", \"datePublished\": \"2023-07-10T09:26:21.041Z\", \"dateUpdated\": \"2024-11-12T14:19:30.590Z\"}",
         dataType: "CVE_RECORD",
         dataVersion: "5.1",
      },
   },
}

sca-2023-0006

Vulnerability from csaf_sick

Published

2023-07-10 13:00

Modified

2023-07-10 13:00

Summary

Vulnerabilities in SICK ICR890-4

Notes

SICK has found several security vulnerabilities in the SICK ICR890-4. If exploited, these could allow an unauthenticated remote attacker to compromise the availability or confidentiality of the SICK ICR890-4. Currently, SICK is not aware of any public exploits that specifically target any of the vulnerabilities. SICK has released a new version of the SICK ICR890-4 firmware and recommends updating to the latest version.

General Security Measures

As general security measures, SICK recommends to minimize network exposure of the devices, restrict network access and follow recommended security practices in order to run the devices in a protected IT environment.

Vulnerability Classification

SICK performs vulnerability classification by using the CVSS scoring system (*CVSS v3.1*). The environmental score is dependent on the customer’s environment and can affect the overall CVSS score. SICK recommends that customers individually evaluate the environmental score to achieve final scoring.

JSON

To clipboard

{
   document: {
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en-US",
      notes: [
         {
            category: "summary",
            text: "SICK has found several security vulnerabilities in the SICK ICR890-4. If exploited, these could allow an unauthenticated remote attacker to compromise the availability or confidentiality of the SICK ICR890-4. Currently, SICK is not aware of any public exploits that specifically target any of the vulnerabilities. \n\nSICK has released a new version of the SICK ICR890-4 firmware and recommends updating to the latest version.",
         },
         {
            category: "general",
            text: "As general security measures, SICK recommends to minimize network exposure of the devices, restrict network access and follow recommended security practices in order to run the devices in a protected IT environment.",
            title: "General Security Measures",
         },
         {
            category: "general",
            text: "SICK performs vulnerability classification by using the CVSS scoring system (*CVSS v3.1*). The environmental score is dependent on the customer’s environment and can affect the overall CVSS score. SICK recommends that customers individually evaluate the environmental score to achieve final scoring.",
            title: "Vulnerability Classification",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "psirt@sick.de",
         issuing_authority: "SICK PSIRT is responsible for any vulnerabilities related to SICK products.",
         name: "SICK PSIRT",
         namespace: "https://www.sick.com/psirt",
      },
      references: [
         {
            summary: "SICK PSIRT Security Advisories",
            url: "https://www.sick.com/psirt",
         },
         {
            summary: "SICK Operating Guidelines",
            url: "https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF",
         },
         {
            summary: "ICS-CERT recommended practices on Industrial Security",
            url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices",
         },
         {
            summary: "CVSS v3.1 Calculator",
            url: "https://www.first.org/cvss/calculator/3.1",
         },
         {
            category: "self",
            summary: "The canonical URL.",
            url: "https://www.sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
         },
         {
            category: "self",
            summary: "The canonical PDF URL.",
            url: "https://www.sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
         },
      ],
      title: "Vulnerabilities in SICK ICR890-4",
      tracking: {
         current_release_date: "2023-07-10T13:00:00.000Z",
         generator: {
            date: "2023-12-04T10:33:21.417Z",
            engine: {
               name: "Secvisogram",
               version: "2.2.16",
            },
         },
         id: "SCA-2023-0006",
         initial_release_date: "2023-07-10T13:00:00.000Z",
         revision_history: [
            {
               date: "2023-07-10T13:00:00.000Z",
               number: "1",
               summary: "Initial Release",
            },
            {
               date: "2023-12-04T11:00:00.000Z",
               number: "2",
               summary: "Added self reference in CSAF",
            },
         ],
         status: "final",
         version: "2",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "vers:all/*",
                        product: {
                           name: "SICK ICR890-4 all versions",
                           product_id: "CSAFPID-0001",
                           product_identification_helper: {
                              x_generic_uris: [
                                 {
                                    namespace: "SICK:Website",
                                    uri: "SICK:Website:https://www.sick.com/de/de/systemloesungen/track-and-trace-systeme/icr-identification-system/c/g555825",
                                 },
                              ],
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "ICR890-4",
               },
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<V2.5.0",
                        product: {
                           name: "SICK ICR890-4 Firmware <V2.5.0",
                           product_id: "CSAFPID-0002",
                        },
                     },
                     {
                        category: "product_version",
                        name: "V2.5.0",
                        product: {
                           name: "SICK ICR890-4 Firmware V2.5.0",
                           product_id: "CSAFPID-0003",
                        },
                     },
                  ],
                  category: "product_name",
                  name: "ICR890-4 Firmware",
               },
            ],
            category: "vendor",
            name: "SICK AG",
         },
      ],
      relationships: [
         {
            category: "installed_on",
            full_product_name: {
               name: "SICK ICR890-4 with Firmware <V2.5.0",
               product_id: "CSAFPID-0004",
            },
            product_reference: "CSAFPID-0002",
            relates_to_product_reference: "CSAFPID-0001",
         },
         {
            category: "installed_on",
            full_product_name: {
               name: "SICK ICR890-4 all versions with Firmware V2.5.0",
               product_id: "CSAFPID-0005",
            },
            product_reference: "CSAFPID-0003",
            relates_to_product_reference: "CSAFPID-0001",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2023-3270",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "description",
               text: "Exposure of Sensitive Information to an Unauthorized Actor in the SICK ICR890-4 could allow an unauthetnticated remote attacker to retrieve sensitive information about the system.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "workaround",
               details: "SICK recommends to disable port 2111 & 2122 once the SICK ICR890-4 is put into operation.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 8.6,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 8.6,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "CHANGED",
                  temporalScore: 8.6,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Exposure of Sensitive Information to an Unauthorized Actor in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-3271",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "description",
               text: "Improper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing unauthenticated endpoints.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "vendor_fix",
               details: "The recommended solution is to update the firmware to a version >= V2.5.0 as soon as possible.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "LOW",
                  baseScore: 8.2,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 8.2,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 8.2,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Improper Access Control in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-3272",
         cwe: {
            id: "CWE-319",
            name: "Cleartext Transmission of Sensitive Information",
         },
         notes: [
            {
               category: "description",
               text: "Cleartext Transmission of Sensitive Information in the SICK ICR890-4 could allow a remote attacker to gather sensitive information by intercepting network traffic that is not encrypted.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "workaround",
               details: "SICK recommends to disable port 2111 & 2122 once the SICK ICR890-4 is put into operation.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 7.5,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 7.5,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Cleartext Transmission of Sensitive Information in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-3273",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "description",
               text: "Improper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to affect the availability of the device by changing settings of the device such as the IP address based on missing access control.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "workaround",
               details: "SICK recommends to disable port 2111 & 2122 once the SICK ICR890-4 is put into operation.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "NONE",
                  environmentalScore: 7.5,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 7.5,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Improper Access Control in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-35696",
         cwe: {
            id: "CWE-668",
            name: "Exposure of Resource to Wrong Sphere",
         },
         notes: [
            {
               category: "description",
               text: "Unauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated remote attacker to retrieve sensitive information about the device via HTTP requests.",
               title: "CVE description",
            },
         ],
         product_status: {
            fixed: [
               "CSAFPID-0005",
            ],
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "vendor_fix",
               details: "The recommended solution is to update the firmware to a version >= V2.5.0 as soon as possible.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 7.5,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 7.5,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Exposure of Resource to Wrong Sphere in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-35697",
         cwe: {
            id: "CWE-307",
            name: "Improper Restriction of Excessive Authentication Attempts",
         },
         notes: [
            {
               category: "description",
               text: "Improper Restriction of Excessive Authentication Attempts in the SICK ICR890-4 could allow a remote attacker to brute-force user credentials.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "vendor_fix",
               details: "The recommended solution is to update the firmware to a version >= V2.5.0 as soon as possible.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "LOW",
                  environmentalScore: 5.3,
                  environmentalSeverity: "MEDIUM",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 5.3,
                  temporalSeverity: "MEDIUM",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Improper Restriction of Excessive Authentication Attempts in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-35698",
         cwe: {
            id: "CWE-204",
            name: "Observable Response Discrepancy",
         },
         notes: [
            {
               category: "description",
               text: "Observable Response Discrepancy in the SICK ICR890-4 could allow a remote attacker to identify valid usernames for the FTP server from the response given during a failed login attempt.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "vendor_fix",
               details: "The recommended solution is to update the firmware to a version >= V2.5.0 as soon as possible.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "LOW",
                  environmentalScore: 5.3,
                  environmentalSeverity: "MEDIUM",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 5.3,
                  temporalSeverity: "MEDIUM",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Observable Response Discrepancy in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-35699",
         cwe: {
            id: "CWE-313",
            name: "Cleartext Storage in a File or on Disk",
         },
         notes: [
            {
               category: "description",
               text: "Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with local access to the device to disclose sensitive information by accessing a SD card.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "mitigation",
               details: "Please make sure that you apply general security practices when operating the SICK ICR890-4 like restricting physical access to the device.\nThe following general security practices could mitigate the associated security risk. \n",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "PHYSICAL",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 5.3,
                  environmentalSeverity: "MEDIUM",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "CHANGED",
                  temporalScore: 5.3,
                  temporalSeverity: "MEDIUM",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Cleartext Storage in a File or on Disk in SICK ICR890-4",
      },
   ],
}

SCA-2023-0006

Vulnerability from csaf_sick

Published

2023-07-10 13:00

Modified

2023-07-10 13:00

Summary

Vulnerabilities in SICK ICR890-4

Notes

General Security Measures

Vulnerability Classification

JSON

To clipboard

{
   document: {
      category: "csaf_security_advisory",
      csaf_version: "2.0",
      distribution: {
         tlp: {
            label: "WHITE",
            url: "https://www.first.org/tlp/",
         },
      },
      lang: "en-US",
      notes: [
         {
            category: "summary",
            text: "SICK has found several security vulnerabilities in the SICK ICR890-4. If exploited, these could allow an unauthenticated remote attacker to compromise the availability or confidentiality of the SICK ICR890-4. Currently, SICK is not aware of any public exploits that specifically target any of the vulnerabilities. \n\nSICK has released a new version of the SICK ICR890-4 firmware and recommends updating to the latest version.",
         },
         {
            category: "general",
            text: "As general security measures, SICK recommends to minimize network exposure of the devices, restrict network access and follow recommended security practices in order to run the devices in a protected IT environment.",
            title: "General Security Measures",
         },
         {
            category: "general",
            text: "SICK performs vulnerability classification by using the CVSS scoring system (*CVSS v3.1*). The environmental score is dependent on the customer’s environment and can affect the overall CVSS score. SICK recommends that customers individually evaluate the environmental score to achieve final scoring.",
            title: "Vulnerability Classification",
         },
      ],
      publisher: {
         category: "vendor",
         contact_details: "psirt@sick.de",
         issuing_authority: "SICK PSIRT is responsible for any vulnerabilities related to SICK products.",
         name: "SICK PSIRT",
         namespace: "https://www.sick.com/psirt",
      },
      references: [
         {
            summary: "SICK PSIRT Security Advisories",
            url: "https://www.sick.com/psirt",
         },
         {
            summary: "SICK Operating Guidelines",
            url: "https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF",
         },
         {
            summary: "ICS-CERT recommended practices on Industrial Security",
            url: "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices",
         },
         {
            summary: "CVSS v3.1 Calculator",
            url: "https://www.first.org/cvss/calculator/3.1",
         },
         {
            category: "self",
            summary: "The canonical URL.",
            url: "https://www.sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
         },
         {
            category: "self",
            summary: "The canonical PDF URL.",
            url: "https://www.sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
         },
      ],
      title: "Vulnerabilities in SICK ICR890-4",
      tracking: {
         current_release_date: "2023-07-10T13:00:00.000Z",
         generator: {
            date: "2023-12-04T10:33:21.417Z",
            engine: {
               name: "Secvisogram",
               version: "2.2.16",
            },
         },
         id: "SCA-2023-0006",
         initial_release_date: "2023-07-10T13:00:00.000Z",
         revision_history: [
            {
               date: "2023-07-10T13:00:00.000Z",
               number: "1",
               summary: "Initial Release",
            },
            {
               date: "2023-12-04T11:00:00.000Z",
               number: "2",
               summary: "Added self reference in CSAF",
            },
         ],
         status: "final",
         version: "2",
      },
   },
   product_tree: {
      branches: [
         {
            branches: [
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "vers:all/*",
                        product: {
                           name: "SICK ICR890-4 all versions",
                           product_id: "CSAFPID-0001",
                           product_identification_helper: {
                              x_generic_uris: [
                                 {
                                    namespace: "SICK:Website",
                                    uri: "SICK:Website:https://www.sick.com/de/de/systemloesungen/track-and-trace-systeme/icr-identification-system/c/g555825",
                                 },
                              ],
                           },
                        },
                     },
                  ],
                  category: "product_name",
                  name: "ICR890-4",
               },
               {
                  branches: [
                     {
                        category: "product_version_range",
                        name: "<V2.5.0",
                        product: {
                           name: "SICK ICR890-4 Firmware <V2.5.0",
                           product_id: "CSAFPID-0002",
                        },
                     },
                     {
                        category: "product_version",
                        name: "V2.5.0",
                        product: {
                           name: "SICK ICR890-4 Firmware V2.5.0",
                           product_id: "CSAFPID-0003",
                        },
                     },
                  ],
                  category: "product_name",
                  name: "ICR890-4 Firmware",
               },
            ],
            category: "vendor",
            name: "SICK AG",
         },
      ],
      relationships: [
         {
            category: "installed_on",
            full_product_name: {
               name: "SICK ICR890-4 with Firmware <V2.5.0",
               product_id: "CSAFPID-0004",
            },
            product_reference: "CSAFPID-0002",
            relates_to_product_reference: "CSAFPID-0001",
         },
         {
            category: "installed_on",
            full_product_name: {
               name: "SICK ICR890-4 all versions with Firmware V2.5.0",
               product_id: "CSAFPID-0005",
            },
            product_reference: "CSAFPID-0003",
            relates_to_product_reference: "CSAFPID-0001",
         },
      ],
   },
   vulnerabilities: [
      {
         cve: "CVE-2023-3270",
         cwe: {
            id: "CWE-200",
            name: "Exposure of Sensitive Information to an Unauthorized Actor",
         },
         notes: [
            {
               category: "description",
               text: "Exposure of Sensitive Information to an Unauthorized Actor in the SICK ICR890-4 could allow an unauthetnticated remote attacker to retrieve sensitive information about the system.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "workaround",
               details: "SICK recommends to disable port 2111 & 2122 once the SICK ICR890-4 is put into operation.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 8.6,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 8.6,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "CHANGED",
                  temporalScore: 8.6,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Exposure of Sensitive Information to an Unauthorized Actor in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-3271",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "description",
               text: "Improper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing unauthenticated endpoints.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "vendor_fix",
               details: "The recommended solution is to update the firmware to a version >= V2.5.0 as soon as possible.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "LOW",
                  baseScore: 8.2,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 8.2,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 8.2,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Improper Access Control in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-3272",
         cwe: {
            id: "CWE-319",
            name: "Cleartext Transmission of Sensitive Information",
         },
         notes: [
            {
               category: "description",
               text: "Cleartext Transmission of Sensitive Information in the SICK ICR890-4 could allow a remote attacker to gather sensitive information by intercepting network traffic that is not encrypted.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "workaround",
               details: "SICK recommends to disable port 2111 & 2122 once the SICK ICR890-4 is put into operation.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 7.5,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 7.5,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Cleartext Transmission of Sensitive Information in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-3273",
         cwe: {
            id: "CWE-284",
            name: "Improper Access Control",
         },
         notes: [
            {
               category: "description",
               text: "Improper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to affect the availability of the device by changing settings of the device such as the IP address based on missing access control.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "workaround",
               details: "SICK recommends to disable port 2111 & 2122 once the SICK ICR890-4 is put into operation.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "HIGH",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "NONE",
                  environmentalScore: 7.5,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 7.5,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Improper Access Control in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-35696",
         cwe: {
            id: "CWE-668",
            name: "Exposure of Resource to Wrong Sphere",
         },
         notes: [
            {
               category: "description",
               text: "Unauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated remote attacker to retrieve sensitive information about the device via HTTP requests.",
               title: "CVE description",
            },
         ],
         product_status: {
            fixed: [
               "CSAFPID-0005",
            ],
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "vendor_fix",
               details: "The recommended solution is to update the firmware to a version >= V2.5.0 as soon as possible.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 7.5,
                  environmentalSeverity: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 7.5,
                  temporalSeverity: "HIGH",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Exposure of Resource to Wrong Sphere in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-35697",
         cwe: {
            id: "CWE-307",
            name: "Improper Restriction of Excessive Authentication Attempts",
         },
         notes: [
            {
               category: "description",
               text: "Improper Restriction of Excessive Authentication Attempts in the SICK ICR890-4 could allow a remote attacker to brute-force user credentials.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "vendor_fix",
               details: "The recommended solution is to update the firmware to a version >= V2.5.0 as soon as possible.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "LOW",
                  environmentalScore: 5.3,
                  environmentalSeverity: "MEDIUM",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 5.3,
                  temporalSeverity: "MEDIUM",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Improper Restriction of Excessive Authentication Attempts in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-35698",
         cwe: {
            id: "CWE-204",
            name: "Observable Response Discrepancy",
         },
         notes: [
            {
               category: "description",
               text: "Observable Response Discrepancy in the SICK ICR890-4 could allow a remote attacker to identify valid usernames for the FTP server from the response given during a failed login attempt.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "vendor_fix",
               details: "The recommended solution is to update the firmware to a version >= V2.5.0 as soon as possible.",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "LOW",
                  environmentalScore: 5.3,
                  environmentalSeverity: "MEDIUM",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  temporalScore: 5.3,
                  temporalSeverity: "MEDIUM",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Observable Response Discrepancy in SICK ICR890-4",
      },
      {
         cve: "CVE-2023-35699",
         cwe: {
            id: "CWE-313",
            name: "Cleartext Storage in a File or on Disk",
         },
         notes: [
            {
               category: "description",
               text: "Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with local access to the device to disclose sensitive information by accessing a SD card.",
               title: "CVE description",
            },
         ],
         product_status: {
            known_affected: [
               "CSAFPID-0004",
            ],
         },
         remediations: [
            {
               category: "mitigation",
               details: "Please make sure that you apply general security practices when operating the SICK ICR890-4 like restricting physical access to the device.\nThe following general security practices could mitigate the associated security risk. \n",
               product_ids: [
                  "CSAFPID-0004",
               ],
            },
         ],
         scores: [
            {
               cvss_v3: {
                  attackComplexity: "LOW",
                  attackVector: "PHYSICAL",
                  availabilityImpact: "NONE",
                  baseScore: 5.3,
                  baseSeverity: "MEDIUM",
                  confidentialityImpact: "HIGH",
                  environmentalScore: 5.3,
                  environmentalSeverity: "MEDIUM",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "CHANGED",
                  temporalScore: 5.3,
                  temporalSeverity: "MEDIUM",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
                  version: "3.1",
               },
               products: [
                  "CSAFPID-0004",
               ],
            },
         ],
         title: "Cleartext Storage in a File or on Disk in SICK ICR890-4",
      },
   ],
}

ghsa-fm49-53h8-h7vg

Vulnerability from github

Published

2023-07-10 18:30

Modified

2024-04-04 05:53

Severity ?

8.2 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L

Details

Show details on source website

JSON

To clipboard

{
   affected: [],
   aliases: [
      "CVE-2023-3271",
   ],
   database_specific: {
      cwe_ids: [
         "CWE-284",
      ],
      github_reviewed: false,
      github_reviewed_at: null,
      nvd_published_at: "2023-07-10T16:15:55Z",
      severity: "HIGH",
   },
   details: "\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\nunauthenticated endpoints.\n\n",
   id: "GHSA-fm49-53h8-h7vg",
   modified: "2024-04-04T05:53:42Z",
   published: "2023-07-10T18:30:49Z",
   references: [
      {
         type: "ADVISORY",
         url: "https://nvd.nist.gov/vuln/detail/CVE-2023-3271",
      },
      {
         type: "WEB",
         url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
      },
      {
         type: "WEB",
         url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
      },
      {
         type: "WEB",
         url: "https://sick.com/psirt",
      },
   ],
   schema_version: "1.4.0",
   severity: [
      {
         score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L",
         type: "CVSS_V3",
      },
   ],
}

gsd-2023-3271

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2023-3271

Aliases

CVE-2023-3271

JSON

To clipboard

{
   GSD: {
      alias: "CVE-2023-3271",
      id: "GSD-2023-3271",
   },
   gsd: {
      metadata: {
         exploitCode: "unknown",
         remediation: "unknown",
         reportConfidence: "confirmed",
         type: "vulnerability",
      },
      osvSchema: {
         aliases: [
            "CVE-2023-3271",
         ],
         details: "\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\nunauthenticated endpoints.\n\n",
         id: "GSD-2023-3271",
         modified: "2023-12-13T01:20:54.682187Z",
         schema_version: "1.4.0",
      },
   },
   namespaces: {
      "cve.org": {
         CVE_data_meta: {
            ASSIGNER: "psirt@sick.de",
            ID: "CVE-2023-3271",
            STATE: "PUBLIC",
         },
         affects: {
            vendor: {
               vendor_data: [
                  {
                     product: {
                        product_data: [
                           {
                              product_name: "ICR890-4",
                              version: {
                                 version_data: [
                                    {
                                       version_value: "not down converted",
                                       x_cve_json_5_version_data: {
                                          defaultStatus: "affected",
                                          versions: [
                                             {
                                                lessThan: "2.5.0",
                                                status: "affected",
                                                version: "0",
                                                versionType: "*",
                                             },
                                          ],
                                       },
                                    },
                                 ],
                              },
                           },
                        ],
                     },
                     vendor_name: "SICK AG",
                  },
               ],
            },
         },
         data_format: "MITRE",
         data_type: "CVE",
         data_version: "4.0",
         description: {
            description_data: [
               {
                  lang: "eng",
                  value: "\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\nunauthenticated endpoints.\n\n",
               },
            ],
         },
         generator: {
            engine: "Vulnogram 0.1.0-dev",
         },
         impact: {
            cvss: [
               {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "LOW",
                  baseScore: 8.2,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L",
                  version: "3.1",
               },
            ],
         },
         problemtype: {
            problemtype_data: [
               {
                  description: [
                     {
                        cweId: "CWE-284",
                        lang: "eng",
                        value: "CWE-284 Improper Access Control",
                     },
                  ],
               },
            ],
         },
         references: {
            reference_data: [
               {
                  name: "https://sick.com/psirt",
                  refsource: "MISC",
                  url: "https://sick.com/psirt",
               },
               {
                  name: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
                  refsource: "MISC",
                  url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
               },
               {
                  name: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
                  refsource: "MISC",
                  url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
               },
            ],
         },
         solution: [
            {
               lang: "en",
               supportingMedia: [
                  {
                     base64: false,
                     type: "text/html",
                     value: "\n\nThe recommended solution is to update the firmware to a version &gt;= V2.5.0 as soon as\npossible.\n\n<br>",
                  },
               ],
               value: "\nThe recommended solution is to update the firmware to a version >= V2.5.0 as soon as\npossible.\n\n\n",
            },
         ],
         source: {
            discovery: "INTERNAL",
         },
      },
      "nvd.nist.gov": {
         configurations: {
            CVE_data_version: "4.0",
            nodes: [
               {
                  children: [
                     {
                        children: [],
                        cpe_match: [
                           {
                              cpe23Uri: "cpe:2.3:o:sick:icr890-4_firmware:*:*:*:*:*:*:*:*",
                              cpe_name: [],
                              versionEndExcluding: "2.5.0",
                              vulnerable: true,
                           },
                        ],
                        operator: "OR",
                     },
                     {
                        children: [],
                        cpe_match: [
                           {
                              cpe23Uri: "cpe:2.3:h:sick:icr890-4:-:*:*:*:*:*:*:*",
                              cpe_name: [],
                              vulnerable: false,
                           },
                        ],
                        operator: "OR",
                     },
                  ],
                  cpe_match: [],
                  operator: "AND",
               },
            ],
         },
         cve: {
            CVE_data_meta: {
               ASSIGNER: "psirt@sick.de",
               ID: "CVE-2023-3271",
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "en",
                     value: "\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\nunauthenticated endpoints.\n\n",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "en",
                           value: "NVD-CWE-noinfo",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
                     refsource: "MISC",
                     tags: [
                        "Vendor Advisory",
                     ],
                     url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
                  },
                  {
                     name: "https://sick.com/psirt",
                     refsource: "MISC",
                     tags: [
                        "Product",
                     ],
                     url: "https://sick.com/psirt",
                  },
                  {
                     name: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
                     refsource: "MISC",
                     tags: [
                        "Vendor Advisory",
                     ],
                     url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
                  },
               ],
            },
         },
         impact: {
            baseMetricV3: {
               cvssV3: {
                  attackComplexity: "LOW",
                  attackVector: "NETWORK",
                  availabilityImpact: "NONE",
                  baseScore: 7.5,
                  baseSeverity: "HIGH",
                  confidentialityImpact: "HIGH",
                  integrityImpact: "NONE",
                  privilegesRequired: "NONE",
                  scope: "UNCHANGED",
                  userInteraction: "NONE",
                  vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
                  version: "3.1",
               },
               exploitabilityScore: 3.9,
               impactScore: 3.6,
            },
         },
         lastModifiedDate: "2023-07-19T17:16Z",
         publishedDate: "2023-07-10T16:15Z",
      },
   },
}

fkie_cve-2023-3271

Vulnerability from fkie_nvd

Published

2023-07-10 16:15

Modified

2024-11-21 08:16

Severity ?

8.2 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Summary

References

URL	Tags
psirt@sick.de	https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json	Vendor Advisory
psirt@sick.de	https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf	Vendor Advisory
psirt@sick.de	https://sick.com/psirt	Product
af854a3a-2127-422b-91ae-364da2661108	https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://sick.com/psirt	Product

Impacted products

	Vendor	Product	Version
	sick	icr890-4_firmware	*
	sick	icr890-4	-

JSON

To clipboard

{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:sick:icr890-4_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "C9781FA2-2446-4587-8BBA-1AC342BC5A0F",
                     versionEndExcluding: "2.5.0",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:sick:icr890-4:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "8E1AF1D7-8380-4B5C-8258-214F00638CC2",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "\nImproper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing\nunauthenticated endpoints.\n\n",
      },
   ],
   id: "CVE-2023-3271",
   lastModified: "2024-11-21T08:16:52.337",
   metrics: {
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "LOW",
               baseScore: 8.2,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 4.2,
            source: "psirt@sick.de",
            type: "Secondary",
         },
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "NONE",
               baseScore: 7.5,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2023-07-10T16:15:55.443",
   references: [
      {
         source: "psirt@sick.de",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
      },
      {
         source: "psirt@sick.de",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
      },
      {
         source: "psirt@sick.de",
         tags: [
            "Product",
         ],
         url: "https://sick.com/psirt",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.json",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://sick.com/.well-known/csaf/white/2023/sca-2023-0006.pdf",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Product",
         ],
         url: "https://sick.com/psirt",
      },
   ],
   sourceIdentifier: "psirt@sick.de",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-284",
            },
         ],
         source: "psirt@sick.de",
         type: "Secondary",
      },
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2023-3271

Vulnerability from cvelistv5

sca-2023-0006

Vulnerability from csaf_sick

SCA-2023-0006

Vulnerability from csaf_sick

ghsa-fm49-53h8-h7vg

Vulnerability from github

gsd-2023-3271

Vulnerability from gsd

fkie_cve-2023-3271

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature