CVE-2023-31408 Information

Description

Cleartext Storage of Sensitive Information in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214 1100215 1100216 1120114 1120116 1122524 1122526 allows a remote attacker to potentially steal user credentials that are stored in the user’s browsers local storage via cross-site-scripting attacks.

Reference

https://sick.com/.well-known/csaf/white/2023/sca-2023-0004.pdf https://sick.com/psirt https://sick.com/.well-known/csaf/white/2023/sca-2023-0004.json