Every CVE whose affected-product data names Sick Lms511 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2023-4419 — CVSS 9.8 (critical): The LMS5xx uses hard-coded credentials, which potentially allow low-skilled unauthorized remote attackers to reconfigure settings and /or…
CVE-2023-4420 — CVSS 9.8 (critical): A remote unprivileged attacker can intercept the communication via e.g. Man-In-The-Middle, due to the absence of Transport Layer Security…
CVE-2020-2075 — CVSS 7.5 (high): Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan…
CVE-2023-31412 — CVSS 7.5 (high): The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. If an attacker manages to retrieve the hash, it…
CVE-2023-4418 — CVSS 7.5 (high): A remote unprivileged attacker can sent multiple packages to the LMS5xx to disrupt its availability through a TCP SYN-based…