CVE-2025-49193

🗓️ 12 Jun 2025 14:15:07Reported by SICK AGType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 36 Views

Missing HTTP security headers can lead to Clickjacking and XSS vulnerabilities in the application.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2025-49193	12 Jun 202515:15	–	attackerkb
Circl	CVE-2025-49193	12 Jun 202514:33	–	circl
CNNVD	SICK Field Analytics和SICK Media Server 安全漏洞	12 Jun 202500:00	–	cnnvd
Cvelist	CVE-2025-49193 Missing HTTP Security Headers	12 Jun 202514:15	–	cvelist
EUVD	EUVD-2025-18192	3 Oct 202520:07	–	euvd
NVD	CVE-2025-49193	12 Jun 202515:15	–	nvd
Positive Technologies	PT-2025-25319 · Sick Ag · Sick Field Analytics +1	12 Jun 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-49193	14 Jun 202514:24	–	redhatcve
Sick AG	Multiple vulnerabilities in SICK Field Analytics and SICK Media Server	12 Jun 202513:00	–	sick
Sick AG	Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products	2 Oct 202513:00	–	sick

NVD

Node

sick baggage_analytics

sick field_analytics

sick logistic_diagnostic_analytics

sick media_serverRange<1.5

sick package_analytics

sick tire_analytics

[
  {
    "vendor": "SICK AG",
    "product": "Field Analytics",
    "versions": [
      {
        "status": "affected",
        "version": "all versions",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "Media Server",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "1.5",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unaffected"
  },
  {
    "vendor": "SICK AG",
    "product": "Baggage Analytics",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "4.6.3",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "Tire Analytics",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "4.6.3",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "Package Analytics",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "4.6.3",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "Logistic Diagnostic Analytics",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "4.6.3",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "affected"
  }
]

Source	Link
cisa	www.cisa.gov/resources-tools/resources/ics-recommended-practices
sick	www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.json
cdn	www.cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF
sick	www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf
first	www.first.org/cvss/calculator/3.1
sick	www.sick.com/psirt

13 May 2026 12:01Current

7.3High risk

Vulners AI Score7.3

CVSS 3.14.2 - 6.1

EPSS0.00286

SSVC

CWE-693