CVE-2025-0592 HIGH

CVE-2025-0592: SICK Lector8xx and InspectorP8xx vulnerable for code execution

Vendor Sick Ag
Product SICK Lector8xx
Weakness CWE-924
Published February 14, 2025
Last update February 14, 2025

CVSS base score

8.8/10
Attack vector Network
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

The vulnerability may allow a remote low priviledged attacker to run arbitrary shell commands by manipulating the firmware file and uploading it to the device.

Key dates

02Disclosure timeline

February 14, 2025 CVE published
February 14, 2025 Record updated