CVE-2023-43699: Improper Restriction of Excessive Authentication Attempts in RDT400 in SICK APU allows an unprivileged remote attacker to guess the password via...
7.5
CVSS
Description
Improper Restriction of Excessive Authentication Attempts in RDT400 in SICK APU
allows an unprivileged remote attacker to guess the password via trial-and-error as the login attempts
are not limited.
Classification
CVE ID: CVE-2023-43699
CVSS Base Severity: HIGH
CVSS Base Score: 7.5
Affected Products
Vendor: SICK AG
Product: APU0200
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.19% (probability of being exploited)
EPSS Percentile: 57.07% (scored less or equal to compared to others)
EPSS Date: 2025-02-03 (when was this score calculated)
References
https://sick.com/psirthttps://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json