CVE-2023-23444
Published: May 12, 2023
Modified: Jun 1, 2026
CVSS v3.1
7.5
Description
Missing Authentication for Critical Function in SICK Flexi Classic and Flexi Soft Gateways with Partnumbers 1042193, 1042964, 1044078, 1044072, 1044073, 1044074, 1099830, 1099832, 1127717, 1069070, 1112296, 1051432, 1102420, 1127487, 1121596, 1121597 allows an unauthenticated remote attacker to influence the availability of the device by changing the IP settings of the device via broadcasted UDP packets.
| Vendor | Product | Versions |
|---|---|---|
SICK AG | UE410-EN3 FLEXI ETHERNET GATEW. | affected all firmware versions |
SICK AG | UE410-EN1 FLEXI ETHERNET GATEW. | affected all firmware versions |
SICK AG | UE410-EN4 FLEXI ETHERNET GATEW. | affected all firmware versions |
SICK AG | FX0-GENT00000 FLEXISOFT EIP GATEW. | affected all firmware versions |
SICK AG | FX0-GMOD00000 FLEXISOFT MOD GATEW. | affected all firmware versions |
SICK AG | FX0-GPNT00000 FLEXISOFT PNET GATEW. | affected all firmware versions |
SICK AG | FX0-GENT00030 FLEXISOFT EIP GATEW.V2 | affected all firmware versions |
SICK AG | FX0-GPNT00030 FLEXISOFT PNET GATEW.V2 | affected all firmware versions |
SICK AG | FX0-GMOD00010 FLEXISOFT MOD GW (C) | affected all firmware versions |
SICK AG | FX3-GEPR00000 FLEXISOFT EFI-PRO GW | affected all firmware versions |
SICK AG | FX3-GEPR00010 FLEXISOFT EFI-PRO GW | affected all firmware versions |
SICK AG | FX0-GETC00000 FLEXISOFT ETC GW | affected all firmware versions |
SICK AG | FX0-GETC00040 FLEXISOFT ETC GW | affected all firmware versions |
SICK AG | FX0-GETC00010 FLEXISOFT ETC GW (C) | affected all firmware versions |
SICK AG | FX0-GENT00010 FLEXISOFT EIP GW (C) | affected all firmware versions |
SICK AG | FX0-GPNT00010 FLEXISOFT PNET GW (C) | affected all firmware versions |
SICK AG | UE410-EN3 FLEXI ETHERNET GATEW. Firmware | affected all firmware versions |
SICK AG | UE410-EN1 FLEXI ETHERNET GATEW. Firmware | affected all firmware versions |
SICK AG | UE410-EN4 FLEXI ETHERNET GATEW. Firmware | affected all firmware versions |
SICK AG | FX0-GENT00000 FLEXISOFT EIP GATEW. Firmware | affected all firmware versions |
SICK AG | FX0-GMOD00000 FLEXISOFT MOD GATEW. Firmware | affected all firmware versions |
SICK AG | FX0-GPNT00000 FLEXISOFT PNET GATEW. Firmware | affected all firmware versions |
SICK AG | FX0-GENT00030 FLEXISOFT EIP GATEW.V2 Firmware | affected all firmware versions |
SICK AG | FX0-GPNT00030 FLEXISOFT PNET GATEW.V2 Firmware | affected all firmware versions |
SICK AG | FX0-GMOD00010 FLEXISOFT MOD GW (C) Firmware | affected all firmware versions |
SICK AG | FX3-GEPR00000 FLEXISOFT EFI-PRO GW Firmware | affected all firmware versions |
SICK AG | FX3-GEPR00010 FLEXISOFT EFI-PRO GW Firmware | affected all firmware versions |
SICK AG | FX0-GETC00000 FLEXISOFT ETC GW Firmware | affected all firmware versions |
SICK AG | FX0-GETC00040 FLEXISOFT ETC GW Firmware | affected all firmware versions |
SICK AG | FX0-GETC00010 FLEXISOFT ETC GW (C) Firmware | affected all firmware versions |
SICK AG | FX0-GENT00010 FLEXISOFT EIP GW (C) Firmware | affected all firmware versions |
SICK AG | FX0-GPNT00010 FLEXISOFT PNET GW (C) Firmware | affected all firmware versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now