Authentication Bypass by Capture-replay in SICK Flexi Soft Gateways



Risk High
Patch available YES
Number of vulnerabilities 1
CVE-ID CVE-2023-5246
CWE-ID CWE-294
Exploitation vector Network
Public exploit N/A
Vulnerable software
SICK FX0-GENT00000
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GENT00010
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GENT00030
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GETC00000
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GETC00010
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GMOD00000
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GMOD00010
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GMOD00030
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GPNT00000
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GPNT00010
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX0-GPNT00030
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX3-GEPR00000
Hardware solutions / Routers & switches, VoIP, GSM, etc

SICK FX3-GEPR00010
Hardware solutions / Routers & switches, VoIP, GSM, etc

Vendor Sick AG

Security Bulletin

This security bulletin contains one high risk vulnerability.

1) Authentication Bypass by Capture-replay

EUVDB-ID: #VU82360

Risk: High

CVSSv4.0: [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2023-5246

CWE-ID: CWE-294 - Authentication Bypass by Capture-replay

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to authentication bypass by capture-replay. A remote attacker can bypass authentication on the target gateways.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

SICK FX0-GENT00000: All versions

SICK FX0-GENT00010: All versions

SICK FX0-GENT00030: All versions

SICK FX0-GETC00000: All versions

SICK FX0-GETC00010: All versions

SICK FX0-GMOD00000: All versions

SICK FX0-GMOD00010: All versions

SICK FX0-GMOD00030: All versions

SICK FX0-GPNT00000: All versions

SICK FX0-GPNT00010: All versions

SICK FX0-GPNT00030: All versions

SICK FX3-GEPR00000: All versions

SICK FX3-GEPR00010: All versions

CPE2.3 External links

http://sick.com/.well-known/csaf/white/2023/sca-2023-0011.pdf
http://sick.com/psirt
http://sick.com/.well-known/csaf/white/2023/sca-2023-0011.json


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

How the attacker can exploit this vulnerability?

The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###