Vulnerability Description
Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan LMS511, CLV62x – CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x, LMS12x, LMS13x, LMS14x, LMS5xx, LMS53x, MSC800, RFH.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sick | Lms111 Firmware | < 1.04 |
| Sick | Lms111 | - |
| Sick | Lms511 Firmware | < 2.30 |
| Sick | Lms511 | - |
| Sick | Clv620 Firmware | All versions |
| Sick | Clv620 | - |
| Sick | Clv622 Firmware | All versions |
| Sick | Clv622 | - |
| Sick | Clv621 Firmware | All versions |
| Sick | Clv621 | - |
| Sick | Icr890-3 Firmware | All versions |
| Sick | Icr890-3 | - |
| Sick | Msc800 Firmware | < 4.10 |
| Sick | Msc800 | - |
| Sick | Rfh Firmware | All versions |
| Sick | Rfh | - |
| Sick | Clv650 Firmware | All versions |
| Sick | Clv650 | - |
| Sick | Clv651 Firmware | All versions |
| Sick | Clv651 | - |
Related Weaknesses (CWE)
References
- https://www.sick.com/de/en/service-and-support/the-sick-product-security-incidenVendor Advisory
- https://www.sick.com/de/en/service-and-support/the-sick-product-security-incidenVendor Advisory
FAQ
What is CVE-2020-2075?
CVE-2020-2075 is a vulnerability with a CVSS score of 7.5 (HIGH). Platform mechanism AutoIP allows remote attackers to reboot the device via a crafted packet in SICK AG solutions Bulkscan LMS111, Bulkscan LMS511, CLV62x – CLV65x, ICR890-3, LMS10x, LMS11x, LMS15x, LM...
How severe is CVE-2020-2075?
CVE-2020-2075 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-2075?
Check the references section above for vendor advisories and patch information. Affected products include: Sick Lms111 Firmware, Sick Lms111, Sick Lms511 Firmware, Sick Lms511, Sick Clv620 Firmware.