An attacker may gain unauthorized access to the host filesystem, potentially allowing them to read and modify system data.
An attacker with low-level privileges, acting remotely over the network, can gain unauthorized access to the host file system of the device. The vulnerability does not require user interaction or complex attack conditions (low complexity level). The scope of the attack extends beyond the context of the vulnerable component (S:C), indicating the possibility of impact on resources outside the original execution environment.
An attacker can read and modify system data on the host, which may lead to a breach of confidentiality, integrity, and availability of the system. In industrial environments, this can result in disruption of device operation or escalation of attacks on further infrastructure.
Patches available from the manufacturer should be applied in accordance with the references (https://sick.com/psirt and document SCA-2026-0001). It is also recommended to apply ICS guidelines published by CISA regarding best practices for industrial system security.
SICK TDC-X401GL devices and their firmware — specific versions indicated in manufacturer references (SCA-2026-0001).
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:HSick Tdc X401gl
HWSickwszystkie wersjeSick Tdc X401gl Firmware
OSSick< 1.4.0
Related vulnerabilities
Brak walidacji obrazów kontenerów w SICK TDC-X401GL — pełny dostęp do systemu
The device is deployed with weak and publicly known default passwords for certain hidden user levels, increasi...
Certain system functions may be accessed without proper authorization, allowing attackers to start, stop, or d...
Improper validation of a login parameter may allow attackers to redirect users to malicious websites after aut...
Firmware update files may expose password hashes for system accounts, which could allow a remote attacker to r...