What is CVE-2023-4419?

CVE-2023-4419 is a vulnerability in the LMS5xx device that allows low-skilled unauthorized remote attackers to reconfigure settings and disrupt device functionality.

How does CVE-2023-4419 affect Sick Lms531 Firmware?

CVE-2023-4419 affects Sick Lms531 Firmware as it uses hard-coded credentials that can be exploited by unauthorized remote attackers.

How does CVE-2023-4419 affect Sick Lms511 Firmware?

CVE-2023-4419 affects Sick Lms511 Firmware as it uses hard-coded credentials that can be exploited by unauthorized remote attackers.

How does CVE-2023-4419 affect Sick Lms500 Firmware?

CVE-2023-4419 affects Sick Lms500 Firmware as it uses hard-coded credentials that can be exploited by unauthorized remote attackers.

What is the severity of CVE-2023-4419?

CVE-2023-4419 has a severity rating of 8.8 (Critical).

How can I fix CVE-2023-4419?

To fix CVE-2023-4419, it is recommended to update the LMS5xx device firmware to a version that does not have the hard-coded credentials vulnerability.

Vulnerability/
CVE-2023-4419

critical

9.8

CWE

798

EPSS

0.084%

24/8/2023

2/10/2024

CVE-2023-4419

First published: Thu Aug 24 2023(Updated: )

The LMS5xx uses hard-coded credentials, which potentially allow low-skilled unauthorized remote attackers to reconfigure settings and /or disrupt the functionality of the device.

Credit: psirt@sick.de psirt@sick.de

Affected Software	Affected Version	How to fix
Sick Lms531 Firmware
Sick Lms531
Sick Lms511 Firmware
Sick Lms511
Sick Lms500 Firmware
Sick Lms500

Remedy

SICK has released a new version V2.21 of the SICK LMS5xx firmware and recommends updating to the newest version.

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2023-4419?
CVE-2023-4419 is a vulnerability in the LMS5xx device that allows low-skilled unauthorized remote attackers to reconfigure settings and disrupt device functionality.
How does CVE-2023-4419 affect Sick Lms531 Firmware?
CVE-2023-4419 affects Sick Lms531 Firmware as it uses hard-coded credentials that can be exploited by unauthorized remote attackers.
How does CVE-2023-4419 affect Sick Lms511 Firmware?
CVE-2023-4419 affects Sick Lms511 Firmware as it uses hard-coded credentials that can be exploited by unauthorized remote attackers.
How does CVE-2023-4419 affect Sick Lms500 Firmware?
CVE-2023-4419 affects Sick Lms500 Firmware as it uses hard-coded credentials that can be exploited by unauthorized remote attackers.
What is the severity of CVE-2023-4419?
CVE-2023-4419 has a severity rating of 8.8 (Critical).
How can I fix CVE-2023-4419?
To fix CVE-2023-4419, it is recommended to update the LMS5xx device firmware to a version that does not have the hard-coded credentials vulnerability.

collector/nvd-api
collector/nvd-index
agent/author
agent/type
agent/softwarecombine
collector/epss-latest
source/FIRST
agent/weakness
agent/references
agent/description
agent/epss
collector/mitre-cve
source/MITRE
agent/remedy
agent/last-modified-date
agent/severity
agent/tags
agent/first-publish-date
agent/event
vendor/sick
canonical/sick lms531 firmware
canonical/sick lms531
canonical/sick lms511 firmware
canonical/sick lms511
canonical/sick lms500 firmware
canonical/sick lms500

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.