Design/Logic Flaw

2023-10-0913:15:00

PRIOn knowledge base

www.prio-n.com

modification of assumed-immutable data

rdt400

sick apu

http requests

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.5%

JSON

Modification of Assumed-Immutable Data (MAID) in RDT400 in SICK APU allows an
unprivileged remote attacker to make the site unable to load necessary strings via changing file paths
using HTTP requests.

CPENameOperatorVersion
apu0200_firmwarelt4.0.0.6

CPE	Name	Operator	Version
	apu0200_firmware	lt	4.0.0.6

References

sick.com/.well-known/csaf/white/2023/sca-2023-0010.json

sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf

sick.com/psirt