CVE-2025-32470 HIGH

CVE-2025-32470: Unauthenticated change of IP adress

Vendor Sick Ag
Product SICK FLX0-GPNT100
Weakness CWE-284
Published April 28, 2025
Last update April 28, 2025

CVSS base score

7.5/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

A remote unauthenticated attacker may be able to change the IP adress of the device, and therefore affecting the availability of the device.

Key dates

02Disclosure timeline

April 28, 2025 CVE published
April 28, 2025 Record updated