Modification of Assumed-Immutable Data (MAID) in RDT400 in SICK APU allows an
unprivileged remote attacker to make the site unable to load necessary strings via changing file paths
using HTTP requests.
References
Link | Resource |
---|---|
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json | Vendor Advisory |
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf | Vendor Advisory |
https://sick.com/psirt | Product |
Configurations
Configuration 1 (hide)
AND |
|
History
11 Oct 2023, 18:49
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:h:sick:apu0200:-:*:*:*:*:*:*:* cpe:2.3:o:sick:apu0200_firmware:*:*:*:*:*:*:*:* |
|
CWE | NVD-CWE-Other | |
First Time |
Sick apu0200
Sick apu0200 Firmware Sick |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
References | (MISC) https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json - Vendor Advisory | |
References | (MISC) https://sick.com/psirt - Product | |
References | (MISC) https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf - Vendor Advisory |
09 Oct 2023, 13:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-09 13:15
Updated : 2023-12-10 15:14
NVD link : CVE-2023-43697
Mitre link : CVE-2023-43697
CVE.ORG link : CVE-2023-43697
JSON object : View
Products Affected
sick
- apu0200_firmware
- apu0200
CWE