Skip to main content

Lms500 Firmware

5 CVEs product

Monthly

CVE-2023-4420 HIGH This Week

A remote unprivileged attacker can intercept the communication via e.g. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Lms531 Firmware Lms511 Firmware Lms500 Firmware
NVD
CVSS 3.1
7.4
EPSS
0.2%
CVE-2023-4419 HIGH This Week

The LMS5xx uses hard-coded credentials, which potentially allow low-skilled unauthorized remote attackers to reconfigure settings and /or disrupt the functionality of the device. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Lms531 Firmware Lms511 Firmware Lms500 Firmware
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-4418 HIGH This Week

A remote unprivileged attacker can sent multiple packages to the LMS5xx to disrupt its availability through a TCP SYN-based denial-of-service (DDoS) attack. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Lms531 Firmware Lms511 Firmware Lms500 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.7%
CVE-2023-31412 HIGH This Week

The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Lms531 Firmware Lms511 Firmware Lms500 Firmware
NVD
CVSS 3.1
7.5
EPSS
0.3%
CVE-2020-2075 HIGH This Week

Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan LMS511, CLV62x - CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Lms111 Firmware Lms511 Firmware Clv620 Firmware Clv622 Firmware +26
NVD
CVSS 3.1
7.5
EPSS
1.4%
EPSS 0% CVSS 7.4
HIGH This Week

A remote unprivileged attacker can intercept the communication via e.g. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Lms531 Firmware Lms511 Firmware +1
NVD
EPSS 1% CVSS 8.8
HIGH This Week

The LMS5xx uses hard-coded credentials, which potentially allow low-skilled unauthorized remote attackers to reconfigure settings and /or disrupt the functionality of the device. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Lms531 Firmware Lms511 Firmware +1
NVD
EPSS 1% CVSS 7.5
HIGH This Week

A remote unprivileged attacker can sent multiple packages to the LMS5xx to disrupt its availability through a TCP SYN-based denial-of-service (DDoS) attack. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Lms531 Firmware Lms511 Firmware +1
NVD
EPSS 0% CVSS 7.5
HIGH This Week

The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Lms531 Firmware Lms511 Firmware +1
NVD
EPSS 1% CVSS 7.5
HIGH This Week

Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan LMS511, CLV62x - CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x,. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Lms111 Firmware Lms511 Firmware +28
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy