Vulnerability Description
An attacker who tampers with the C++ CLI client may crash the UpdateService during file transfers, disrupting updates and availability.
CVSS Score
6.5
MEDIUM
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sick | Tloc100-100 Firmware | All versions |
| Sick | Tloc100-100 | - |
Related Weaknesses (CWE)
References
- https://sick.com/psirtVendor Advisory
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practicesUS Government Resource
- https://www.first.org/cvss/calculator/3.1Not Applicable
- https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.jsonVendor Advisory
- https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0013.pdfVendor Advisory
- https://www.sick.com/media/docs/9/19/719/special_information_sick_operating_guidProduct
FAQ
What is CVE-2025-59462?
CVE-2025-59462 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An attacker who tampers with the C++ CLI client may crash the UpdateService during file transfers, disrupting updates and availability.
How severe is CVE-2025-59462?
CVE-2025-59462 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-59462?
Check the references section above for vendor advisories and patch information. Affected products include: Sick Tloc100-100 Firmware, Sick Tloc100-100.