9.1

CVE-2025-49196

EPSS 0.03%
Veröffentlicht 12.06.2025 14:20:53
Zuletzt bearbeitet 26.01.2026 19:28:00
Quelle psirt@sick.de
CVE-Watchlists
Login
Unerledigt
Login

A service supports the use of a deprecated and unsafe TLS version. This could be exploited to expose sensitive information, modify data in unexpected ways or spoof identities of other users or devices, affecting the confidentiality and integrity of the device.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Sick ≫ Field Analytics

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.097

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.1	3.9	5.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
psirt@sick.de	6.5	2.2	4.2	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

CWE-327 Use of a Broken or Risky Cryptographic Algorithm

The product uses a broken or risky cryptographic algorithm or protocol.

https://sick.com/psirt

Vendor Advisory

https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF

Broken Link

https://www.cisa.gov/resources-tools/resources/ics-recommended-practices

US Government Resource

https://www.first.org/cvss/calculator/3.1

Not Applicable

https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.json

Vendor Advisory

https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0007.pdf

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2025-49196

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-49196

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-49196

EUVD