CVE-2022-46834 Vulnerability Details

  /     /     /  

CVE-2022-46834 Metadata Quick Info

CVE Published: 13/12/2022 | CVE Updated: 03/08/2024 | CVE Year: 2022
Source: SICK AG | Vendor: n/a | Product: SICK RFU65x Firmware
Status : PUBLISHED

CVE-2022-46834 Description

Use of a Broken or Risky Cryptographic Algorithm in SICK RFU65x firmware version < v2.21 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the firmware update is available from the responsible SICK customer contact person.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID: CWE-327
CWE Name: CWE-327
Source: n/a

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description: