PT-2022-27991 · Sick · Sick Rfu63X
Published
2022-12-13
·
Updated
2022-12-15
·
CVE-2022-46833
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
SICK RFU63x firmware versions prior to 2.21
Description
The issue is related to the use of a broken or risky cryptographic algorithm, allowing a low-privileged remote attacker to decrypt encrypted data if weak cipher suites are used for encryption via the SSH interface.
Recommendations
For SICK RFU63x firmware versions prior to 2.21, update the firmware to version 2.21 or later, following the patch and installation procedure available from the responsible SICK customer contact person.
Fix
Use of a Broken Cryptographic Algorithm
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sick Rfu63X