CVE-2023-43696

Improper Access Control in SICK APU allows an unprivileged remote attacker to download as well as upload arbitrary files via anonymous access to the FTP server.

CVSS v3 9.8 CRITICAL

9.8^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json	Vendor Advisory
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf	Vendor Advisory
https://sick.com/psirt	Product

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:sick:apu0200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:sick:apu0200:-:*:*:*:*:*:*:*

History

11 Oct 2023, 19:07

Type	Values Removed	Values Added
CPE		cpe:2.3:h:sick:apu0200:-:::::::* cpe:2.3:o:sick:apu0200_firmware::::::::
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.8
References	~~(MISC) https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf -~~	(MISC) https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf - Vendor Advisory
References	~~(MISC) https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json -~~	(MISC) https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json - Vendor Advisory
References	~~(MISC) https://sick.com/psirt -~~	(MISC) https://sick.com/psirt - Product
First Time		Sick apu0200 Firmware Sick Sick apu0200
CWE		CWE-434

09 Oct 2023, 12:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-10-09 12:15

Updated : 2024-02-28 20:33

NVD link : CVE-2023-43696

Mitre link : CVE-2023-43696

CVE.ORG link : CVE-2023-43696

JSON object : View

Products Affected

sick

apu0200_firmware
apu0200

CWE

CWE-434

Unrestricted Upload of File with Dangerous Type

CWE-284

Improper Access Control

{"id": "CVE-2023-43696", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.8, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "psirt@sick.de", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 4.2, "exploitabilityScore": 3.9}]}, "published": "2023-10-09T12:15:10.067", "references": [{"url": "https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json", "tags": ["Vendor Advisory"], "source": "psirt@sick.de"}, {"url": "https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf", "tags": ["Vendor Advisory"], "source": "psirt@sick.de"}, {"url": "https://sick.com/psirt", "tags": ["Product"], "source": "psirt@sick.de"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-434"}]}, {"type": "Secondary", "source": "psirt@sick.de", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "\nImproper Access Control in SICK APU allows an unprivileged remote attacker to\ndownload as well as upload arbitrary files via anonymous access to the FTP server.\n\n"}, {"lang": "es", "value": "Un control de acceso inadecuado en SICK APU permite a un atacante remoto sin privilegios descargar y cargar archivos arbitrarios mediante acceso an\u00f3nimo al servidor FTP."}], "lastModified": "2023-10-11T19:07:48.907", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sick:apu0200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2A3C873-A9B5-4AF8-8703-F00233E56A5E", "versionEndExcluding": "4.0.0.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sick:apu0200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0E32F3FD-FB2B-4F73-AD20-8AB98B02FCF1"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@sick.de"}