CVE-2020-2075
31.08.2020, 18:15
Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan LMS511, CLV62x CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x, LMS12x, LMS13x, LMS14x, LMS5xx, LMS53x, MSC800, RFH.Enginsight
| Vendor | Product | Version |
|---|---|---|
| sick | lms111_firmware | 𝑥 < 1.04 |
| sick | lms511_firmware | 𝑥 < 2.30 |
| sick | clv620_firmware | * |
| sick | clv622_firmware | * |
| sick | clv621_firmware | * |
| sick | icr890-3_firmware | * |
| sick | msc800_firmware | 𝑥 < 4.10 |
| sick | rfh_firmware | * |
| sick | clv650_firmware | * |
| sick | clv651_firmware | * |
| sick | clv631_firmware | * |
| sick | clv630_firmware | * |
| sick | clv632_firmware | * |
| sick | clv640_firmware | * |
| sick | clv642_firmware | * |
| sick | lms100_firmware | 𝑥 < 2.0 |
| sick | lms101_firmware | 𝑥 < 2.0 |
| sick | lms111_firmware | 𝑥 < 2.0 |
| sick | lms153_firmware | 𝑥 < 2.0 |
| sick | lms151_firmware | 𝑥 < 2.0 |
| sick | lms133_firmware | 𝑥 < 2.10 |
| sick | lms142_firmware | 𝑥 < 2.10 |
| sick | lms143_firmware | 𝑥 < 2.10 |
| sick | lms131_firmware | 𝑥 < 2.10 |
| sick | lms121_firmware | 𝑥 < 2.10 |
| sick | lms123_firmware | 𝑥 < 2.10 |
| sick | lms122_firmware | 𝑥 < 2.10 |
| sick | lms141_firmware | 𝑥 < 2.10 |
| sick | lms511_firmware | * |
| sick | lms531_firmware | * |
| sick | lms500_firmware | * |
| sick | icr890-3.5_firmware | * |
𝑥
= Vulnerable software versions
Common Weakness Enumeration
- CWE-703 - Improper Check or Handling of Exceptional ConditionsThe software does not properly anticipate or handle exceptional conditions that rarely occur during normal operation of the software.
- CWE-755 - Improper Handling of Exceptional ConditionsThe software does not handle or incorrectly handles an exceptional condition.