Code injection

2023-05-1511:15:00

PRIOn knowledge base

www.prio-n.com

uncontrolled resource consumption

remote attacker

slowloris style attack

http requests

webserver availability

7.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.8%

JSON

Uncontrolled Resource Consumption in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216, 1120114, 1120116, 1122524, 1122526 allows an remote attacker to influence the availability of the webserver by invocing a Slowloris style attack via HTTP requests.

CPENameOperatorVersion
ftmg-esd15axx_firmwarelt2.0
ftmg-esd20axx_firmwarelt2.0
ftmg-esd25axx_firmwarelt2.0
ftmg-esn40sxx_firmwarelt2.0
ftmg-esn50sxx_firmwarelt2.0
ftmg-esr40sxx_firmwarelt2.0
ftmg-esr50sxx_firmwarelt2.0

Name	Operator	Version
ftmg-esd15axx_firmware	lt	2.0
ftmg-esd20axx_firmware	lt	2.0
ftmg-esd25axx_firmware	lt	2.0
ftmg-esn40sxx_firmware	lt	2.0
ftmg-esn50sxx_firmware	lt	2.0
ftmg-esr40sxx_firmware	lt	2.0
ftmg-esr50sxx_firmware	lt	2.0