CVE-2022-46832

EPSS 0.07%
Veröffentlicht 13.12.2022 16:15:26
Zuletzt bearbeitet 21.04.2025 16:15:53
Quelle psirt@sick.de
CVE-Watchlists
Login
Unerledigt
Login

Use of a Broken or Risky Cryptographic Algorithm in SICK RFU62x firmware version < 2.21 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the firmware update is available from the responsible SICK customer contact person.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sick ≫ Rfu620-10100 Firmware Version < 2.21

Sick ≫ Rfu620-10100 Version-

Sick ≫ Rfu620-10101 Firmware Version < 2.21

Sick ≫ Rfu620-10101 Version-

Sick ≫ Rfu620-10102 Firmware Version < 2.21

Sick ≫ Rfu620-10102 Version-

Sick ≫ Rfu620-10103 Firmware Version < 2.21

Sick ≫ Rfu620-10103 Version-

Sick ≫ Rfu620-10104 Firmware Version < 2.21

Sick ≫ Rfu620-10104 Version-

Sick ≫ Rfu620-10105 Firmware Version < 2.21

Sick ≫ Rfu620-10105 Version-

Sick ≫ Rfu620-10107 Firmware Version < 2.21

Sick ≫ Rfu620-10107 Version-

Sick ≫ Rfu620-10108 Firmware Version < 2.21

Sick ≫ Rfu620-10108 Version-

Sick ≫ Rfu620-10111 Firmware Version < 2.21

Sick ≫ Rfu620-10111 Version-

Sick ≫ Rfu620-10114 Firmware Version < 2.21

Sick ≫ Rfu620-10114 Version-

Sick ≫ Rfu620-10118 Firmware Version < 2.21

Sick ≫ Rfu620-10118 Version-

Sick ≫ Rfu620-10400 Firmware Version < 2.21

Sick ≫ Rfu620-10400 Version-

Sick ≫ Rfu620-10401 Firmware Version < 2.21

Sick ≫ Rfu620-10401 Version-

Sick ≫ Rfu620-10500 Firmware Version < 2.21

Sick ≫ Rfu620-10500 Version-

Sick ≫ Rfu620-10501 Firmware Version < 2.21

Sick ≫ Rfu620-10501 Version-

Sick ≫ Rfu620-10503 Firmware Version < 2.21

Sick ≫ Rfu620-10503 Version-

Sick ≫ Rfu620-10504 Firmware Version < 2.21

Sick ≫ Rfu620-10504 Version-

Sick ≫ Rfu620-10507 Firmware Version < 2.21

Sick ≫ Rfu620-10507 Version-

Sick ≫ Rfu620-10508 Firmware Version < 2.21

Sick ≫ Rfu620-10508 Version-

Sick ≫ Rfu620-10510 Firmware Version < 2.21

Sick ≫ Rfu620-10510 Version-

Sick ≫ Rfu620-10514 Firmware Version < 2.21

Sick ≫ Rfu620-10514 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.07%	0.21

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-327 Use of a Broken or Risky Cryptographic Algorithm

The product uses a broken or risky cryptographic algorithm or protocol.

https://sick.com/psirt

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-46832

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-46832

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-46832

EUVD