{"id": "CVE-2020-2075", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-08-31T18:15:13.170", "references": [{"url": "https://www.sick.com/de/en/service-and-support/the-sick-product-security-incident-response-team-sick-psirt/w/psirt/#advisories", "tags": ["Vendor Advisory"], "source": "psirt@sick.de"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-755"}]}, {"type": "Secondary", "source": "psirt@sick.de", "description": [{"lang": "en", "value": "CWE-703"}]}], "descriptions": [{"lang": "en", "value": "Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan LMS511, CLV62x \u2013 CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x, LMS12x, LMS13x, LMS14x, LMS5xx, LMS53x, MSC800, RFH."}, {"lang": "es", "value": "El mecanismo de plataforma AutoIP permite a atacantes remotos reiniciar el dispositivo por medio de un paquete dise\u00f1ado en las soluciones de SICK AG Bulkscan LMS111, Bulkscan LMS511, CLV62x - CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x, LMS12x, LMS13x, LMS14x, LMS5xx, LMS53x, RFH"}], "lastModified": "2020-09-04T17:36:53.553", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms111_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E4E9439B-2153-4D66-8C8B-D7DED32BD81B", "versionEndExcluding": "1.04"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms111:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "67011E35-C9AB-40C5-8DCC-29FA82A5F880"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms511_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "33CCFE2A-61B1-4565-8504-F26A0412A0CD", "versionEndExcluding": "2.30"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms511:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9ABE387A-9B29-43DE-A4F1-EDD3CB8BEB6F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv620_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97320450-2AEC-4E4A-9399-E2115AC4315A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv620:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6A58D587-1663-4E99-85DA-80DCBF0486F1"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv622_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BC9D5448-F17A-4042-A8F8-EE261F3C3E9E"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv622:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8559D0CC-2CBE-4E4B-9FF9-43AECFFD27C5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv621_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D07761A7-0CFE-4F43-9ADC-FCC28FA5ECFE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv621:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5189BEF6-17B2-4F77-B8E3-85B00D977CBA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:icr890-3_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D9C80C4-52DA-40E2-8C38-8014F616D1AB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:icr890-3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D3A05BC1-4E78-494B-B6E2-5F1E721CC50B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:msc800_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E01267B-42D2-4F29-BFEF-6AD37D48582A", "versionEndExcluding": "4.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:msc800:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5A09CB55-1368-4623-8EB5-BAB2D57E4BC4"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:rfh_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7074A993-231B-45B9-ACC8-14594D420F16"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:rfh:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "983F3C0E-7C67-47EA-BD54-8F3B7BF5493A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv650_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5A30918-7CA4-4C05-896B-20426A30D86F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv650:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D3FB3E2F-1637-4861-AF22-D4BF59A7906D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv651_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C7BBD455-DA1C-4E86-BC99-143B22D4448F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv651:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2313BBE6-6679-4073-9FC0-51FBE9F0A8B3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv631_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FCA9ED42-6E5A-4456-B099-D08EB6ABB0DD"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv631:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0893F42F-EAB9-4D3D-9F94-4892C6890BDB"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv630_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99BD27B2-E055-4C52-A817-577384497F87"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv630:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "42DC25E7-8C55-470A-B451-591A03CA2A40"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv632_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2DEE9E96-1DA5-4EBD-8847-EAE418215C11"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv632:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "82B0632E-A55F-4EA8-A132-0D11CE38FDC6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv640_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B22CDFFC-AF15-4883-95F4-CE4D191EC482"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv640:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C721EE7D-D046-4AEF-80FA-217B5684419E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:clv642_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0E632CA7-141B-495B-8A57-BC06867842AA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:clv642:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "651F0D5C-F7DA-41A6-B3C3-B48C0662C855"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms100_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "118835C2-4939-4601-935A-032028D58E84", "versionEndExcluding": "2.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "31A7D324-DBC8-4EBC-8AA2-E42C33E5758C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms101_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF828DD0-095A-4784-8D1A-87F3CF361297", "versionEndExcluding": "2.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms101:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5B5ED872-0E79-4901-96D9-27CBA55DAEA3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms111_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D69045C1-7EF8-4F8E-8940-1171DB40F9D9", "versionEndExcluding": "2.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms111:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "67011E35-C9AB-40C5-8DCC-29FA82A5F880"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms153_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63031071-D70A-440F-8735-801AEEC0CC0D", "versionEndExcluding": "2.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms153:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "54A544C0-9ABD-46AD-B193-87C6EF7FF133"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms151_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A61E7FD6-BB7F-4FEB-A82F-6493B993C7D5", "versionEndExcluding": "2.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms151:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9D01238F-0776-493A-AD81-D0E14D2A4C71"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms133_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2054C96-9A9C-4FC8-8E8C-7D315BA73234", "versionEndExcluding": "2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms133:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B48111FA-BB11-4FF9-9CE0-42459229A60C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms142_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A83F4309-6C29-48F6-A276-95E5BC8330FA", "versionEndExcluding": "2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms142:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "43602F20-5065-4965-BFC9-BFA581ED5ECC"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms143_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "55215A7C-B7D8-4D94-84FA-26939D9FAD1F", "versionEndExcluding": "2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms143:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "02F0ED4E-1AB0-4EAB-8D3F-E318DE3D51F1"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms131_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9543231B-6C33-4C66-95D0-1D2B49063F11", "versionEndExcluding": "2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms131:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9378A66C-EF01-4DFA-9E8C-4231FE0E8914"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms121_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D8143104-4230-42EE-BA3C-73C10CA48667", "versionEndExcluding": "2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms121:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F9B7CE13-0E33-439B-866B-C0CD365919C5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms123_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2D3E89AC-85E2-4279-87AC-31D89381F263", "versionEndExcluding": "2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms123:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EAB011CA-769D-4335-A57A-62B77AD9E0FF"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms122_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCA825F2-A103-429B-BD61-08634033BA12", "versionEndExcluding": "2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms122:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7C689D72-3D25-4C3F-BBF5-15691D18F9BA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms141_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0DB1AB8D-8116-46C1-8125-10DED10DE830", "versionEndExcluding": "2.10"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms141:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "24237BC0-BE8D-4EF8-A3C4-BEE1A8373481"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms511_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F113FA6F-F3CC-43C7-97A4-D40F8F1F5E9F"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms511:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9ABE387A-9B29-43DE-A4F1-EDD3CB8BEB6F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms531_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5943B624-D730-4679-8118-CD29CFB4CD1C"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms531:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "44AF5B79-0A15-4195-80F3-7304D8000D1A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:lms500_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DF24DAB-D1E4-4B14-B9CE-BFB52F9BDBC7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:lms500:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B8A37D4F-969C-4496-BD10-13C903A41305"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:icr890-3.5_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D253F05-FCF4-4E90-BC55-CC838C2297F5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:icr890-3.5:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2F8A72B7-8433-4EC6-8384-89A52E519A58"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@sick.de"}