Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2023-31410
Analyzed
More InfoOfficial Page
Source-psirt@sick.de
View Known Exploited Vulnerability (KEV) details
Published At-19 Jun, 2023 | 15:15
Updated At-29 Jun, 2023 | 19:37

A remote unprivileged attacker can intercept the communication via e.g. Man-In-The-Middle, due to the absence of Transport Layer Security (TLS) in the SICK EventCam App. This lack of encryption in the communication channel can lead to the unauthorized disclosure of sensitive information. The attacker can exploit this weakness to eavesdrop on the communication between the EventCam App and the Client, and potentially manipulate the data being transmitted.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.17.4HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Secondary3.19.8CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 7.4
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Type: Secondary
Version: 3.1
Base score: 9.8
Base severity: CRITICAL
Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CPE Matches
SICK AG
sick
>>sick_eventcam_app>>*
cpe:2.3:a:sick:sick_eventcam_app:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-319Primarynvd@nist.gov
CWE ID: CWE-319
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://sick.com/.well-known/csaf/white/2023/sca-2023-0005.jsonpsirt@sick.de
Vendor Advisory
https://sick.com/.well-known/csaf/white/2023/sca-2023-0005.pdfpsirt@sick.de
Vendor Advisory
https://sick.com/psirtpsirt@sick.de
Vendor Advisory
Hyperlink: https://sick.com/.well-known/csaf/white/2023/sca-2023-0005.json
Source: psirt@sick.de
Resource:
Vendor Advisory
Hyperlink: https://sick.com/.well-known/csaf/white/2023/sca-2023-0005.pdf
Source: psirt@sick.de
Resource:
Vendor Advisory
Hyperlink: https://sick.com/psirt
Source: psirt@sick.de
Resource:
Vendor Advisory
Change History
0Changes found
Details not found