Lucene search

[email protected]NVD:CVE-2023-5101

HistoryOct 09, 2023 - 1:15 p.m.

CVE-2023-5101

2023-10-0913:15:10

CWE-552

[email protected]

web.nvd.nist.gov

cve-2023-5101

files accessible

directories accessible

external parties

unprivileged remote attacker

download

http requests

security vulnerability

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

39.5%

JSON

Files or Directories Accessible to External Parties in RDT400 in SICK APU allows an
unprivileged remote attacker to download various files from the server via HTTP requests.

Affected configurations

NVD

Node

sickapu0200_firmwareRange<4.0.0.6

AND

sickapu0200Match-

References

sick.com/.well-known/csaf/white/2023/sca-2023-0010.json

sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf

sick.com/psirt

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

39.5%

JSON

Related for NVD:CVE-2023-5101

cvelist1 cve1 prion1