CVE-2023-3273

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 10, 2023

Updated: Jul 19, 2023

CWE ID 440

Summary

CVE-2023-3273 is a vulnerability affecting the SICK ICR890-4 industrial control device. The issue involves a lack of proper access control, enabling unauthenticated remote attackers to modify settings, including the IP address, leading to potential device availability problems. This vulnerability poses a significant risk if not addressed promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

gRPC

Affected Vendors

GRPC

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rjqat_
https://www.cve.org/CVERecord?id=CVE-2023-3273
https://nvd.nist.gov/vuln/detail/CVE-2023-3273

Back to Vulnerability Database