Improper Access Control in the SICK ICR890-4 could allow an unauthenticated remote attacker to gather information about the system and download data via the REST API by accessing unauthenticated endpoints.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Icr890-4_firmware | Sick | * | 2.5.0 (excluding) |