CVE-2023-23446

🗓️ 15 May 2023 10:52:30Reported by SICK AGType

Improper Access Control in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216, 1120114, 1120116, 1122524, 1122526 allows an unprivileged remote attacker to download files via the REST interface.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2023-23446	15 May 202311:15	–	attackerkb
CNNVD	SICK FTMg 安全漏洞	15 May 202300:00	–	cnnvd
CVE	CVE-2023-23446	15 May 202310:52	–	cve
EUVD	EUVD-2023-27546	3 Oct 202520:07	–	euvd
NVD	CVE-2023-23446	15 May 202311:15	–	nvd
Prion	Improper access control	15 May 202311:15	–	prion
Positive Technologies	PT-2023-18955 · Sick · Sick Ftmg Air Flow Sensor	15 May 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-23446	23 May 202502:37	–	redhatcve
Sick AG	Vulnerabilities in SICK FTMg	11 May 202313:00	–	sick
Vulnrichment	CVE-2023-23446	15 May 202310:52	–	vulnrichment

[
  {
    "vendor": "SICK AG",
    "product": "SICK FTMG-ESD15AXX AIR FLOW SENSOR",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v3.0.0.131.Release",
        "versionType": "*"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "SICK FTMG-ESD20AXX AIR FLOW SENSOR",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v3.0.0.131.Release",
        "versionType": "*"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "SICK FTMG-ESD25AXX AIR FLOW SENSOR",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v3.0.0.131.Release",
        "versionType": "*"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "SICK FTMG-ESN40SXX AIR FLOW SENSOR",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v3.0.0.131.Release",
        "versionType": "*"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "SICK FTMG-ESN50SXX AIR FLOW SENSOR",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v3.0.0.131.Release",
        "versionType": "*"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "SICK FTMG-ESR40SXX AIR FLOW SENSOR",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v3.0.0.131.Release",
        "versionType": "*"
      }
    ],
    "defaultStatus": "affected"
  },
  {
    "vendor": "SICK AG",
    "product": "SICK FTMG-ESR50SXX AIR FLOW SENSOR",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "v3.0.0.131.Release",
        "versionType": "*"
      }
    ],
    "defaultStatus": "affected"
  }
]

Source	Link
sick	www.sick.com/.well-known/csaf/white/2023/sca-2023-0004.json
sick	www.sick.com/.well-known/csaf/white/2023/sca-2023-0004.pdf
sick	www.sick.com/psirt

01 Jun 2026 12:19Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.5

EPSS0.00471

CWE-284