CVE-2025-0867: Privilege Escalation in MEAC300-FNADE4

9.9 CVSS

Description

The standard user uses the run as function to start the MEAC applications with administrative privileges. To ensure that the system can startup on its own, the credentials of the administrator were stored. Consequently, the EPC2 user can execute any command with administrative privileges. This allows a privilege escalation to the administrative level.

Classification

CVE ID: CVE-2025-0867

CVSS Base Severity: CRITICAL

CVSS Base Score: 9.9

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected Products

Vendor: SICK AG

Product: SICK MEAC300-FNADE4

Exploit Prediction Scoring System (EPSS)

EPSS Score: 0.04% (probability of being exploited)

EPSS Percentile: 12.92% (scored less or equal to compared to others)

EPSS Date: 2025-03-15 (when was this score calculated)

References

https://sick.com/psirt
https://cdn.sick.com/media/docs/1/11/411/Special_information_CYBERSECURITY_BY_SICK_en_IM0084411.PDF
https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
https://www.first.org/cvss/calculator/3.1
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0001.pdf
https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0001.json

Timeline

2025-02-15 00:32:24 UTC
CVE

Privilege Escalation in MEAC300-FNADE4