Sick Icr890-4 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Sick Icr890-4 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2023-3270 — CVSS 8.6 (high): Exposure of Sensitive Information to an Unauthorized Actor in the SICK ICR890-4 could allow an unauthenticated remote attacker to retrieve…
CVE-2023-3271 — CVSS 8.2 (high): Improper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and…
CVE-2023-3272 — CVSS 7.5 (high): Cleartext Transmission of Sensitive Information in the SICK ICR890-4 could allow a remote attacker to gather sensitive information by…
CVE-2023-3273 — CVSS 7.5 (high): Improper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to affect the availability of the device by…
CVE-2023-35696 — CVSS 7.5 (high): Unauthenticated endpoints in the SICK ICR890-4 could allow an unauthenticated remote attacker to retrieve sensitive information about the…
CVE-2023-35697 — CVSS 5.3 (medium): Improper Restriction of Excessive Authentication Attempts in the SICK ICR890-4 could allow a remote attacker to brute-force user…
CVE-2023-35698 — CVSS 5.3 (medium): Observable Response Discrepancy in the SICK ICR890-4 could allow a remote attacker to identify valid usernames for the FTP server from the…
CVE-2023-35699 — CVSS 5.3 (medium): Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with local access to the device to disclose…