CNNVD-202510-845 Information
CNNVD ID
CNNVD-202510-845
Related CVE
- CNNVD Published: 2025-10-06
Description (Chinese)
SICK AG Enterprise Analytics是德国SICK AG公司的一个包裹分析软件。 SICK AG Enterprise Analytics存在安全漏洞,该漏洞源于API端点未充分验证输入数据,可能导致日志条目被篡改或稀释。
Description (English)
SICK AG Enterprise Analytics is a package analysis software for SICK AG in Germany. There is a security loophole in SICK AG Enterprise Analytics, which stems from the fact that the API endpoint does not sufficiently validate the input data, which may lead to the tampering or dilution of log entries.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
SICK AG
Published
2025-10-06
Last Modified
2026-02-24
References
https://sick.com/psirt https://www.cisa.gov/resources-tools/resources/ics-recommended-practices https://www.first.org/cvss/calculator/3.1 https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0010.json https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0010.pdf https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidelines_cybersecurity_by_sick_en_im0106719.pdf