Use of a Broken or Risky Cryptographic Algorithm in SICK RFU62x firmware version < 2.21 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the firmware update is available from the responsible SICK customer contact person.
References
Link | Resource |
---|---|
https://sick.com/psirt | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
Configuration 15 (hide)
AND |
|
Configuration 16 (hide)
AND |
|
Configuration 17 (hide)
AND |
|
Configuration 18 (hide)
AND |
|
Configuration 19 (hide)
AND |
|
Configuration 20 (hide)
AND |
|
Configuration 21 (hide)
AND |
|
History
15 Dec 2022, 20:13
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://sick.com/psirtĀ - Vendor Advisory | |
First Time |
Sick rfu620-10500
Sick rfu620-10111 Firmware Sick rfu620-10102 Sick rfu620-10507 Sick rfu620-10101 Sick rfu620-10508 Sick rfu620-10500 Firmware Sick rfu620-10118 Firmware Sick rfu620-10501 Firmware Sick rfu620-10504 Sick rfu620-10103 Firmware Sick rfu620-10514 Sick rfu620-10507 Firmware Sick rfu620-10508 Firmware Sick rfu620-10105 Firmware Sick rfu620-10107 Sick rfu620-10503 Firmware Sick rfu620-10504 Firmware Sick rfu620-10514 Firmware Sick rfu620-10111 Sick rfu620-10118 Sick rfu620-10108 Sick rfu620-10400 Sick rfu620-10108 Firmware Sick rfu620-10501 Sick Sick rfu620-10102 Firmware Sick rfu620-10101 Firmware Sick rfu620-10104 Firmware Sick rfu620-10401 Firmware Sick rfu620-10510 Sick rfu620-10100 Sick rfu620-10503 Sick rfu620-10114 Firmware Sick rfu620-10107 Firmware Sick rfu620-10100 Firmware Sick rfu620-10105 Sick rfu620-10104 Sick rfu620-10114 Sick rfu620-10400 Firmware Sick rfu620-10510 Firmware Sick rfu620-10103 Sick rfu620-10401 |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
CWE | CWE-327 | |
CPE | cpe:2.3:h:sick:rfu620-10114:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10401_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10101:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10105_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10111:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10500:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10503_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10508_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10111_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10108_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10118:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10510:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10401:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10105:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10514_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10102_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10118_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10507_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10102:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10104:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10400:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10107:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10504:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10103:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10501_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10508:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10400_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10100_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10507:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10500_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10108:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10104_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10514:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10100:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10107_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10103_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10503:-:*:*:*:*:*:*:* cpe:2.3:h:sick:rfu620-10501:-:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10510_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10504_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10101_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:sick:rfu620-10114_firmware:*:*:*:*:*:*:*:* |
13 Dec 2022, 16:52
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-13 16:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-46832
Mitre link : CVE-2022-46832
CVE.ORG link : CVE-2022-46832
JSON object : View
Products Affected
sick
- rfu620-10111
- rfu620-10503
- rfu620-10103
- rfu620-10100
- rfu620-10500_firmware
- rfu620-10507
- rfu620-10100_firmware
- rfu620-10501
- rfu620-10514
- rfu620-10508_firmware
- rfu620-10114_firmware
- rfu620-10102
- rfu620-10400
- rfu620-10510
- rfu620-10508
- rfu620-10500
- rfu620-10401_firmware
- rfu620-10102_firmware
- rfu620-10504_firmware
- rfu620-10504
- rfu620-10105
- rfu620-10400_firmware
- rfu620-10514_firmware
- rfu620-10108_firmware
- rfu620-10108
- rfu620-10401
- rfu620-10114
- rfu620-10501_firmware
- rfu620-10101
- rfu620-10104_firmware
- rfu620-10111_firmware
- rfu620-10118
- rfu620-10503_firmware
- rfu620-10105_firmware
- rfu620-10107_firmware
- rfu620-10101_firmware
- rfu620-10103_firmware
- rfu620-10104
- rfu620-10507_firmware
- rfu620-10510_firmware
- rfu620-10107
- rfu620-10118_firmware
CWE
CWE-327
Use of a Broken or Risky Cryptographic Algorithm