CVE-2020-2076

Name of the Vulnerable Software and Affected Versions SICK Package Analytics software versions up to and including V04.0.0

Description The issue allows for an authentication bypass by directly interacting with the REST API, enabling an attacker to send unauthorized requests and bypass current authentication controls. This could potentially allow writing files without authentication.

Recommendations For versions up to and including V04.0.0, consider restricting access to the REST API as a temporary workaround until a patch is available. Avoid using the API for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.