1. Home
  2. CVE Database
  3. CVE-2023-23447
HIGH · 7.5

CVE-2023-23447

Uncontrolled Resource Consumption in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216, 1120114, 1120116, 1122524, 1122526 allows an unprivileged remote attacker to influence the a...

Vulnerability Description

Uncontrolled Resource Consumption in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216, 1120114, 1120116, 1122524, 1122526 allows an unprivileged remote attacker to influence the availability of the webserver by invocing several open file requests via the REST interface.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
SickFtmg-Esd20Axx Firmware< 2.0
SickFtmg-Esd20Axx-
SickFtmg-Esd25Axx Firmware< 2.0
SickFtmg-Esd25Axx-
SickFtmg-Esn40Sxx Firmware< 2.0
SickFtmg-Esn40Sxx-
SickFtmg-Esn50Sxx Firmware< 2.0
SickFtmg-Esn50Sxx-
SickFtmg-Esr50Sxx Firmware< 2.0
SickFtmg-Esr50Sxx-
SickFtmg-Esr40Sxx Firmware< 2.0
SickFtmg-Esr40Sxx-
SickFtmg-Esd15Axx Firmware< 2.0
SickFtmg-Esd15Axx-

Related Weaknesses (CWE)

CWE-400

References

FAQ

What is CVE-2023-23447?

CVE-2023-23447 is a vulnerability with a CVSS score of 7.5 (HIGH). Uncontrolled Resource Consumption in SICK FTMg AIR FLOW SENSOR with Partnumbers 1100214, 1100215, 1100216, 1120114, 1120116, 1122524, 1122526 allows an unprivileged remote attacker to influence the a...

How severe is CVE-2023-23447?

CVE-2023-23447 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2023-23447?

Check the references section above for vendor advisories and patch information. Affected products include: Sick Ftmg-Esd20Axx Firmware, Sick Ftmg-Esd20Axx, Sick Ftmg-Esd25Axx Firmware, Sick Ftmg-Esd25Axx, Sick Ftmg-Esn40Sxx Firmware.