CVE-2023-31410

Name of the Vulnerable Software and Affected Versions SICK EventCam App (affected versions not specified)

Description A remote unprivileged attacker can intercept communication via Man-In-The-Middle attacks due to the absence of Transport Layer Security (TLS) in the app. This lack of encryption can lead to unauthorized disclosure of sensitive information. The attacker can exploit this weakness to eavesdrop on communication between the EventCam App and the Client, and potentially manipulate transmitted data.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.