CVE-2020-2075

2020-08-3117:09:07

CWE-703

SICK AG

www.cve.org

0.002 Low

EPSS

Percentile

58.9%

JSON

Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan LMS511, CLV62x – CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x, LMS12x, LMS13x, LMS14x, LMS5xx, LMS53x, MSC800, RFH.

CNA Affected

[
  {
    "product": "Bulkscan LMS111; Bulkscan LMS511; CLV62x – CLV65x; ICR890-3; LMS10x, LMS11x, LMS15x; LMS12x, LMS13x, LMS14x; LMS5xx, LMS53x; MSC800; RFH",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "All Versions < V1.04"
      },
      {
        "status": "affected",
        "version": "All Versions < V2.30"
      },
      {
        "status": "affected",
        "version": "All versions with Ethernet interface"
      },
      {
        "status": "affected",
        "version": "All ICR890-3 and ICR890-3.5 devices all versions"
      },
      {
        "status": "affected",
        "version": "All Versions < V2.0"
      },
      {
        "status": "affected",
        "version": "All Versions < V2.10"
      },
      {
        "status": "affected",
        "version": "All versions"
      },
      {
        "status": "affected",
        "version": "All Versions < V4.10"
      }
    ]
  }
]