SICK Flow Sensor Vulnerability Allows File Download with Unprivileged Account

CVECVE-2023-23446
CVSScvssV3_1: 7.5
SourceCVE-2023-23446

The SICK FTMg AIR FLOW SENSOR is vulnerable to improper access control which could allow an attacker to download files without proper privileges.

SICK FTMg AIR FLOW SENSOR is a device used to measure airflow. It contains a REST interface that is meant to require authentication to access files and data. However, due to a configuration issue, it is possible to download files using an account that does not have the correct privileges.

An attacker could exploit this by creating a low privileged account and using it to access the REST interface of a vulnerable SICK flow sensor. They would then be able to download sensitive files like configuration details and firmware that should normally require higher privileges.

If you have a SICK FTMg AIR FLOW SENSOR, you should contact SICK support to obtain updates to fix this issue. Make sure to keep your devices updated with the latest patches. You can also consider disabling the REST interface if it is not needed or restricting access to it through your firewall to only trusted systems.

Taking steps to apply updates, restrict access and monitor your industrial devices can help prevent unauthorized access in the future. Let me know if you have any other questions!

References