CVE-2023-23452

Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05 allows an unprivileged remote attacker to achieve arbitrary remote code execution via maliciously crafted RK512 commands to the listener on TCP port 9000.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://sick.com/psirt	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:sick:fx0-gpnt00000_firmware:3.04:::::::*
	cpe:2.3:o:sick:fx0-gpnt00000_firmware:3.05:::::::*

cpe:2.3:h:sick:fx0-gpnt00000:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

OR	cpe:2.3:o:sick:fx0-gpnt00010_firmware:3.04:::::::*
	cpe:2.3:o:sick:fx0-gpnt00010_firmware:3.05:::::::*

cpe:2.3:h:sick:fx0-gpnt00010:-:*:*:*:*:*:*:*

History

02 Mar 2023, 17:02

Type	Values Removed	Values Added
CPE		cpe:2.3:h:sick:fx0-gpnt00010:-:::::::* cpe:2.3:h:sick:fx0-gpnt00000:-:::::::* cpe:2.3:o:sick:fx0-gpnt00000_firmware:3.04:::::::* cpe:2.3:o:sick:fx0-gpnt00000_firmware:3.05:::::::* cpe:2.3:o:sick:fx0-gpnt00010_firmware:3.05:::::::* cpe:2.3:o:sick:fx0-gpnt00010_firmware:3.04:::::::*
References	~~(MISC) https://sick.com/psirt -~~	(MISC) https://sick.com/psirt - Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8
CWE		CWE-306

21 Feb 2023, 14:50

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-02-20 23:15

Updated : 2024-02-04 23:14

NVD link : CVE-2023-23452

Mitre link : CVE-2023-23452

CVE.ORG link : CVE-2023-23452

JSON object : View

Products Affected

sick

fx0-gpnt00000_firmware
fx0-gpnt00000
fx0-gpnt00010_firmware
fx0-gpnt00010

CWE

CWE-306

Missing Authentication for Critical Function

{"id": "CVE-2023-23452", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}]}, "published": "2023-02-20T23:15:12.447", "references": [{"url": "https://sick.com/psirt", "tags": ["Vendor Advisory"], "source": "psirt@sick.de"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-306"}]}, {"type": "Secondary", "source": "psirt@sick.de", "description": [{"lang": "en", "value": "CWE-306"}]}], "descriptions": [{"lang": "en", "value": "Missing Authentication for Critical Function in SICK FX0-GPNT v3 Firmware Version V3.04 and V3.05 allows an unprivileged remote attacker to achieve arbitrary remote code execution via maliciously crafted RK512 commands to the listener on TCP port 9000."}], "lastModified": "2023-03-02T17:02:30.297", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:fx0-gpnt00000_firmware:3.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AE5D70D0-8AB7-4718-946F-8899FEF6DD77"}, {"criteria": "cpe:2.3:o:sick:fx0-gpnt00000_firmware:3.05:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5FC5162-066F-4FC0-875A-2BCD70B82842"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:fx0-gpnt00000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BF3BF752-4F49-4E90-9790-1913ED64D8B3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:fx0-gpnt00010_firmware:3.04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "718BD86C-0389-421F-BDA7-5A7635EEAD36"}, {"criteria": "cpe:2.3:o:sick:fx0-gpnt00010_firmware:3.05:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3211E28A-7225-4E4C-9D43-77C8AF0D1781"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:fx0-gpnt00010:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "60B6F37A-78EE-4D1F-ACAE-FDE864F847B8"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@sick.de"}