Remote Information Disclosure Vulnerability in SICK's Industrial Products
CVE-2025-49184
7.5HIGH
Key Information:
- Vendor
Sick Ag
- Vendor
- CVE Published:
- 12 June 2025
What is CVE-2025-49184?
A remote attacker can exploit this vulnerability to gain unauthorized access to sensitive information within the application by bypassing necessary authorization for various configuration settings. This may lead to the exposure of critical operational data, thus compromising the security and integrity of SICK’s industrial systems. It’s crucial for users to apply the relevant patches and adhere to recommended security practices to mitigate potential risks.
Affected Version(s)
Baggage Analytics all version
Enterprise Analytics all versions
Field Analytics all versions
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved