CVE-2020-2077

Summary

SICK Package Analytics software up to and including version V04.0.0 are vulnerable due to incorrect default permissions settings. An unauthorized attacker could read sensitive data from the system by querying for known files using the REST API directly.

Affected Software

VendorProductVersion RangeStatus
n/aSICK Package Analytics<=V04.0.0affected

Weaknesses

  • Incorrect Default Permissions

ADP Enrichment

CVE Program Container

Additional References

References