CRITICAL🇵🇱 Wersja polska

CVE-2023-23451

CVSS 9.8v3.1pub. 2023-04-19upd. 2025-02-05

The Flexi Classic and Flexi Soft Gateways SICK UE410-EN3 FLEXI ETHERNET GATEW. with serial number <=2311xxxx all Firmware versions, SICK UE410-EN1 FLEXI ETHERNET GATEW. with serial number <=2311xxxx all Firmware versions, SICK UE410-EN3S04 FLEXI ETHERNET GATEW. with serial number <=2311xxxx all Firmware versions, SICK UE410-EN4 FLEXI ETHERNET GATEW. with serial number <=2311xxxx all Firmware versions, SICK FX0-GENT00000 FLEXISOFT EIP GATEW. with serial number <=2311xxxx with Firmware <=V2.11.0, SICK FX0-GMOD00000 FLEXISOFT MOD GATEW. with serial number <=2311xxxx with Firmware <=V2.11.0, SICK FX0-GPNT00000 FLEXISOFT PNET GATEW. with serial number <=2311xxxx with Firmware <=V2.12.0, SICK FX0-GENT00030 FLEXISOFT EIP GATEW.V2 with serial number <=2311xxxx all Firmware versions, SICK FX0-GPNT00030 FLEXISOFT PNET GATEW.V2 with serial number <=2311xxxx all Firmware versions and SICK FX0-GMOD00010 FLEXISOFT MOD GW with serial number <=2311xxxx with Firmware <=V2.11.0 all have Telnet enabled by factory default. No password is set in the default configuration.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Sick Fx0 Gent00000

    HW
    Sick
    wszystkie wersje
  • Sick Fx0 Gent00000 Firmware

    OS
    Sick
    ≤ 2.11.0
  • Sick Fx0 Gent00030

    HW
    Sick
    wszystkie wersje
  • Sick Fx0 Gent00030 Firmware

    OS
    Sick
    wszystkie wersje
  • Sick Fx0 Gmod00000

    HW
    Sick
    wszystkie wersje
  • Sick Fx0 Gmod00000 Firmware

    OS
    Sick
    ≤ 2.11.0
  • Sick Fx0 Gmod00010

    HW
    Sick
    wszystkie wersje
  • Sick Fx0 Gmod00010 Firmware

    OS
    Sick
    ≤ 2.11.0
  • Sick Fx0 Gpnt00000

    HW
    Sick
    wszystkie wersje
  • Sick Fx0 Gpnt00000 Firmware

    OS
    Sick
    ≤ 2.12.0
  • Sick Fx0 Gpnt00030

    HW
    Sick
    wszystkie wersje
  • Sick Fx0 Gpnt00030 Firmware

    OS
    Sick
    wszystkie wersje
  • Sick Ue410 En1

    HW
    Sick
    wszystkie wersje
  • Sick Ue410 En1 Firmware

    OS
    Sick
    wszystkie wersje
  • Sick Ue410 En3

    HW
    Sick
    wszystkie wersje
  • Sick Ue410 En3 Firmware

    OS
    Sick
    wszystkie wersje
  • Sick Ue410 En3s04

    HW
    Sick
    wszystkie wersje
  • Sick Ue410 En3s04 Firmware

    OS
    Sick
    wszystkie wersje
  • Sick Ue410 En4

    HW
    Sick
    wszystkie wersje
  • Sick Ue410 En4 Firmware

    OS
    Sick
    wszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2023-23452CRITICAL9.8ten sam produkt

Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05 allows an un...

CVE-2023-23453CRITICAL9.8ten sam produkt

Missing Authentication for Critical Function in SICK FX0-GENT v3 Firmware Version V3.04 and V3.05 allows an un...

CVE-2023-5246HIGH8.8ten sam produkt

Authentication Bypass by Capture-replay in SICK Flexi Soft Gateways with Partnumbers 1044073, 1127717, 1130282...

CVE-2023-23444HIGH7.5ten sam produkt

Missing Authentication for Critical Function in SICK Flexi Classic and Flexi Soft Gateways with Partnumbers 10...

CVE-2019-14753HIGH7.5ten sam produkt

SICK FX0-GPNT00000 and FX0-GENT00000 devices through 3.4.0 have a Buffer Overflow