CNNVD-202510-838 Information
CNNVD ID
CNNVD-202510-838
Related CVE
- CNNVD Published: 2025-10-06
Description (Chinese)
SICK AG Baggage Analytics是德国SICK AG公司的一款用于机场追踪系统的可视化和分析软件。 SICK AG Baggage Analytics存在安全漏洞,该漏洞源于登录失败时返回不同错误信息,可能导致用户名枚举攻击。
Description (English)
SICK AG Baggage Analytics is a visualization and analysis software for airport tracking systems from SICK AG, Germany. There is a security loophole in SICK AG Baggage Analytics, which stems from the return of different erroneous information when login failed and may lead to an attack by a user name.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
SICK AG
Published
2025-10-06
Last Modified
2026-02-24
References
https://sick.com/psirt https://www.cisa.gov/resources-tools/resources/ics-recommended-practices https://www.first.org/cvss/calculator/3.1 https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0010.json https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0010.pdf https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf