Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-27584
HistoryNov 01, 2022 - 9:15 p.m.

Design/Logic Flaw

2022-11-0121:15:00
PRIOn knowledge base
www.prio-n.com
1
password recovery
vulnerability
sick sim2000st
partnumber 1080579
userlevel
privileges
system integrity
firmware
device configuration
security practices
nvd

9.6 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON

Password recovery vulnerability in SICK SIM2000ST Partnumber 1080579 allows an unprivileged remote attacker to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery mechanism method. This leads to an increase in their privileges on the system and thereby affecting the confidentiality integrity and availability of the system. An attacker can expect repeatable success by exploiting the vulnerability. The firmware versions <=1.7.0 allow to optionally disable device configuration over the network interfaces. Please make sure that you apply general security practices when operating the SIM2000ST. A fix is planned but not yet scheduled.

References

Related

cve 1
nvd 1
cvelist 1
cve
cve
CVE-2022-27584
2022-11-01 21:15:11
nvd
nvd
CVE-2022-27584
2022-11-01 21:15:11
cvelist
cvelist
CVE-2022-27584
2022-11-01 00:00:00

9.6 High

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

72.8%

JSON
Related for PRION:CVE-2022-27584
cve1nvd1cvelist1